A brand new phishing scheme aimed toward Fb customers and counting on over 3000 pretend profiles has seen risk actors trying to steal account credentials.
Group-IB Digital Danger Safety (DRP) consultants described the marketing campaign in an advisory printed at the moment, including that it’s nonetheless energetic on the time of writing.
“All through February and March 2023, Group-IB researchers recognized greater than 3,200 rip-off profiles that had been both compromised or created by the cybercriminals who launched this marketing campaign,” wrote Group-IB’s Sharef Hlal and Karam Chatra.
“The rip-off is performed in additional than 20 languages, though Group-IB consultants discovered that the overwhelming majority of the profiles impersonating Meta posted in English.”
In response to the safety consultants, the final word objective of this marketing campaign is to realize entry to the Fb accounts of public figures, celebrities, companies and sports activities groups, amongst others, to steal delicate info and use it to entry extra accounts.
“The latter is feasible given the all-too-common prevalence that an individual makes use of the identical mixture of username and password for a number of companies, and this poses severe dangers for his or her accounts on monetary companies platforms,” reads the Group-IB advisory.
From a technical standpoint, the hackers concerned on this marketing campaign primarily relied on phishing web sites impersonating the Fb login web page, in addition to session hijacking assaults aimed toward stealing browser cookies.
Learn extra on Fb-aimed assaults: Hackers Use S1deload Stealer to Goal Fb, YouTube Customers
“The scammers impersonate Meta, Fb’s guardian firm, of their public posts and on any of their greater than 220 phishing websites,” Hlal and Chatra wrote.
“They acceptable Meta and Fb’s official logos on their social media profiles and phishing net pages to make them seem reliable and reliable within the eyes of customers. These pretend profiles don’t have anything to do with Fb, and they’re continuously taken down shortly by the social community.”
The publication of the advisory, which features a full evaluation of strategies used on this marketing campaign, comes months after Meta took down two separate disinformation operations originating in China and Russia.
Editorial picture credit score: Ink Drop / Shutterstock.com
