Phishing attacks often attempt to trick users with fake login pages so they enter their credentials on a malicious site. Facebook wants to help users separate legitimate and fraudulent emails with a new tool intended to stop consumers from getting phished.
Starting today, users will be able to view "recent emails about security and login" from their Security Settings page (facebook.com/settings). There, Facebook will publish a list of security-related emails it has recently sent.
Facebook uses a domain called Facebookmail.com to send notifications when someone attempts to log into an account or change a password. Users who are suspicious of emails claiming to be from Facebook can access Settings to see if messages are legitimate before logging in.
Read more details here.