- 15:30Catalan economists favor negotiation over trade retaliation with the U.S.
- 14:45Stocks, Dollar Slip, Bonds Pummelled Again as Trade War Roils Markets
- 14:10Vietnam's response to U.S. tariffs: cracking down on China trade
- 13:50Sánchez stresses Spain’s positive foreign policy in China, advocating for balanced relations
- 13:16South Korean president Yoon's departure sparks political tensions
- 12:40Morocco and France Bruno Retailleau Expected in Rabat This Weekend
- 12:10Iran says it will give US talks about nuclear plans a 'genuine chance'
- 11:35Economic and social development in Casablanca-Settat through INDH projects
- 11:06US Supreme Court orders the return of wrongfully deported migrant
Follow us on Facebook
Phishing alert: Sophisticated scam targets businesses through Facebook ads
Kaspersky experts have uncovered a new phishing scam targeting businesses advertising on Facebook. Cybercriminals are impersonating Meta for Business, the platform dedicated to enterprise users, and sending fraudulent emails claiming that the recipient’s page contains prohibited content. These emails prompt businesses to provide sensitive information under the guise of unlocking their accounts and pages. The attackers’ ultimate goal is to gain access to these professional accounts.
Kaspersky’s anonymized data reveals that emails mimicking these fraudulent communications started reaching Facebook users on December 14, 2024. These phishing attempts have targeted businesses worldwide, including in France. A closer inspection of the sender's field in the email shows that the domain used does not belong to Facebook. According to Kaspersky, these emails are distributed from multiple servers, further complicating detection.
The email includes a link that redirects potential victims to Facebook Messenger. There, attackers use a fake support account that appears legitimate to create a false sense of trust. While the account is labeled as a fan page, this detail can be easily overlooked, especially in high-stress scenarios where recipients fear losing access to their accounts due to alleged violations.
This scam stands out for its sophistication. Unlike older phishing methods that accused users of copyright infringement and solicited replies via email, this new tactic simulates internal communication on Facebook’s platform itself.
Andrey Kovtun, Email Threats Protection Group Manager at Kaspersky, highlights the escalating risk: “In 2025, we anticipate a rise in attacks leveraging social engineering and user trust in major platforms. These scams are becoming increasingly sophisticated, with attackers striving to closely replicate official services. We urge vigilance—verify the authenticity of messages, avoid clicking on suspicious links, and refrain from engaging with dubious accounts. Enabling additional security measures, such as two-factor authentication, is highly recommended. If you receive a similar email, report the incident to Facebook’s support team and immediately update your passwords if your information has been compromised.”
This discovery follows a previous report by Kaspersky of another phishing scheme on Facebook targeting business accounts.
Comments (0)