WARNING – This Malicious Scam Is Spreading!
(FeaturedNews.com) – Scammers will stop at nothing in their attempts to steal personal information from unsuspecting people. The latest scheme involves using Facebook messenger. These criminals pose as the support team for a real company to fool users and grab their Facebook credentials.
Trustwave discovered the scam. The cybercriminal first sends an email telling the user their page has violations, and Facebook will delete it within a specific time frame. The phishing notice includes a link to appeal the ruling and stop the page removal.
A new #phishing attack is using Facebook Messenger #chatbots to impersonate the company's support team and steal credentials for managers of #Facebook pages. via @BleepinComputer https://t.co/kW5qHXbgPT
— SonicWall (@SonicWall) June 28, 2022
If users click on the link, they go into messenger, where the chatbot acts as a customer support representative. Then, the intended victim gets another appeal button to click, which reroutes the user to a fake website that looks like a Facebook support page.
Once there, the user must input their email address, page name, phone number, and name. When they click submit, it asks for the Facebook page password and brings up the two-factor authentication box to grab that data. If a user inputs all these details, the scammers have everything they need to take over the page. The threat can extend beyond Facebook, given many companies use the media giant’s login info for their own website authentication.
There are some clues that the scheme is a scam, such as mismatching case numbers and URLs or email addresses that don’t match Facebook’s normal domain name. However, unsuspecting victims could have difficulties noticing those subtle differences, particularly in the heat of the moment.
Experts recommend always double-checking URLs before providing personal information or contacting Facebook support directly from the site to avoid these kinds of scams.
Copyright 2022, FeaturedNews.com
