Phishing attacks (using the image of a well-known company or institution), in which fraudsters impersonate the Meta conglomerate (owner of Facebook), are not decreasing. This time, cybercriminals have prepared a quite credible-looking message. It’s best not to click on it at all.
Scammers send notifications on Facebook. They threaten to block the account
The new fraud campaign was noticed by the industry expert, whose editors also received fake news. Fraudsters primarily target administrators of Facebook fan pages, trying to force them to click on the notification and then on the link to the crafted page.
The example notification comes from an account impersonating the Meta conglomerate, contains the correct company logo and a quite credible name – “Update for Business”. After clicking, it turns out that we are dealing with a published post in which the author simply marked specific accounts (thus appearing on their notification list).
Niebezpiecznik.pl also published several similar posts, which come from many different accounts to other Meta teams or institutions (e.g. “Meta Business Support” or “Department of Security”). In the posts, the scammers claim that there has been a “violation of Facebook’s community rules” and threaten to block the account. Some of the posts are written in Polish, but most attackers do not even bother to use an online translator.
The links contained in the messages traditionally lead to websites crafted by cybercriminals that display a “verification form.” Fraudsters claim that you need to confirm the account owner’s details, thus extorting confidential information – Facebook login details, followed by date of birth and a scan of your ID document. The result may be not only account takeover and criminals purchasing paid advertising campaigns for the victim’s account, but also identity theft with all the consequences of this practice.
What to do to avoid being deceived? First of all, you should carefully read the content of notifications that come to your Facebook account. As you might guess, the administration of the Meta social networking site will not send them via public posts with specific accounts marked. It is also worth always checking the appearance of the link you find online, paying attention to any errors and enabling two-step verification when logging in (not only on Facebook).
Source: Gazeta
Mabel is a talented author and journalist with a passion for all things technology. As an experienced writer for the 247 News Agency, she has established a reputation for her in-depth reporting and expert analysis on the latest developments in the tech industry.
