NAIROBI, Kenya- In a cunning twist, cybercriminals are now leveraging legitimate Facebook infrastructure to target business accounts with fake suspension threats.
Kaspersky has unearthed a new phishing scam that uses real Facebook functions to send deceptive emails designed to panic users into revealing sensitive information.
How the Scam Works
Imagine receiving an email from Facebook warning you that your business account is at risk of suspension.
The email, originating from Facebook, includes an alarming message: “24 Hours Left to Request Review. See Why.” It’s enough to send anyone into a tailspin.
Clicking on the link takes you to a genuine Facebook page with a similar warning.
Just when you think you’re safe, you’re redirected to a phishing site, expertly camouflaged with Meta branding.
Here, the urgency escalates, reducing the time to resolve the issue from 24 to 12 hours.
Initially, the site asks for seemingly harmless information but soon escalates to requesting your account’s email, phone number, and password.
The Anatomy of the Attack
What makes this scheme particularly insidious is its use of compromised Facebook accounts to send these notifications.
Cybercriminals change the account name to a threatening message and the profile picture to an exclamation mark.
They then create posts mentioning the targeted business accounts. Because these notifications are sent through Facebook’s actual infrastructure, they’re almost guaranteed to reach their intended victims.
“Even notifications that appear legitimate and come from a trusted source such as Facebook can be deceptive,” warns Andrey Kovtun, a security expert at Kaspersky.
Protecting Your Business Account
To safeguard your Facebook business account from these sophisticated phishing attempts, here are some critical steps:
Verify the Source: Always double-check the sender’s email address and look for inconsistencies or unusual requests.
Examine Links Carefully: Hover over any links to see where they actually lead before clicking. Genuine Facebook links will always direct you to a Facebook domain.
Enable Two-Factor Authentication (2FA): Adding an extra layer of security can prevent unauthorized access even if your login credentials are compromised.
As cyber threats become increasingly sophisticated, staying vigilant is more crucial than ever.