New Year, New Cybercriminal Tactics

New Year, New Scams. Cybercriminals’ methods are evolving. Here is the latest phishing example with a twist:

A phony email from Facebook lures victims into thinking that they have allegedly violated terms of service. The victim must then appeal through a crafted phishing page to avoid losing access to their account.

Instead of the usual phishing link to an external landing page, this email is crafted with a link that points to an actual Facebook post.

The link in the Facebook post leads to a phishing website that mimics Facebook’s copyright appeal page.

Upon clicking the send button, any information entered in the form by unsuspecting victims will be sent to the cybercriminals, along with the victim’s client IP and geolocation information.

A successful phishing attack could result in the loss of Personally Identifiable Information (PII), login credentials, and Facebook profile link.

In 2023, stay vigilant in detecting scams.

Want to share this example with friends or family? Share the original Trustwave story.

Or copy and paste this link: https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/meta-phish-facebook-infrastructure-used-in-phishing-attack-chain/

You Might Also Like

Staying Ahead of Fraud

The 10 Guiding Principles of Commercial Lending

New CreditStar Series Now Available in TRB Learning