SpiderLabs researchers from Trustwave Holdings Inc. today revealed a new campaign that leverages Facebook’s identity for phishing attacks and theft of personally identifiable information.
A new phishing campaign, dubbed “Meta-Phish”, uses Facebook messages in its attack chain to trick users into giving up their account credentials and personally identifiable information. According to analysts from cybersecurity firm Trustwave, the phishing attack is done through an email sent to the recipient’s inbox.
This message has the particularity of containing a link to a real publication impersonating Facebook, which allows the attackers to strengthen the capacity of their attack. Content is designed to appear legitimatewith a dummy “Support Page” profile whose display image is the Facebook logo.
Also read – Facebook: beware of this malware that steals your credentials and sensitive data
Scammers want to steal your Facebook account
The emails sent to the targets allude to a copyright infringement issue on one of the recipient’s Facebook posts, warning that their account will be deleted within 48 hours if no appeal is filed. Obviously, this is false. By clicking on the link to allegedly appeal, victims land on the fake Facebook page.
This post includes a link to an external phishing site named after Meta, the company that owns Facebook. Users are asked to enter their username and password to log in to their account, but since it is not a genuine Facebook page, it is impossible to log in. Entering your identifiers will simply allow scammers to recover them, and thus to take control of your account to usurp your identity.
Worse still, when submitting this data, the page also collects the victim’s IP address and geolocation information and exfiltrates it all to a Telegram account under the threat actor’s control. They can therefore now deactivate all security, including biometric authentication.
Trustwave advises users to be cautious if they have received copyright infringement notices claiming to be from Facebook, as the company is unlikely to send such an email. On Facebook, you have to be careful, because there are many scams. Newly, we’ve also seen an upsurge in the “Is that you in this video?” scam. “.