Don’t Click! Fake Chat Used in Meta Business Account Phishing

Summary: A sophisticated phishing campaign targeting Meta/Instagram users has emerged, using fake emails and deceptive chatbots to exploit fears of account suspension. Victims are lured into providing sensitive information through a convincing counterfeit support system. This campaign emphasizes the need for users to remain vigilant and skeptical regarding unsolicited communications.

Affected: Meta/Instagram users

Keypoints :

Phishing emails disguise themselves as critical account alerts from Meta, urging users to click on malicious links.
A fake landing page resembles Meta’s business support but is designed to collect personal and account information from victims.
The attackers utilize a support chatbot to gain trust while secretly requesting access to 2FA for account takeover.

Source: https://securityonline.info/dont-click-fake-chat-used-in-meta-business-account-phishing/

Tags: EXPLOIT, PHISHING, PASSWORD, EMAIL