Kaspersky has uncovered a new phishing scam that’s cleverly targeting businesses promoting their pages on Facebook. This latest scam has been designed with utmost sophistication, using social engineering tactics to exploit business owners’ trust in the platform.
Phony emails that pretend to be from Facebook
The scam starts with emails that appear to come from Meta for Business – the official platform for businesses on Facebook. These emails falsely claim that the recipient’s business page has been flagged for containing prohibited content, urging them to provide an explanation to avoid having their account and page blocked. The goal? To gain access to the business accounts and hijack them.
Kaspersky’s data reveals that this phishing campaign began circulating on December 14, with reports from businesses across the globe, particularly from the Asia Pacific region. The emails are deceptively convincing. A closer look at the “From” field reveals that the domain sending the email does not belong to Facebook, making it easy to spot the scam – if you’re paying attention.
Redirecting victims to fake Facebook Messenger pages
The attackers don’t stop at emails. Once victims click on the link in the email, they’re redirected to Facebook Messenger, where the scam continues. Here, they interact with an account that masquerades as Facebook’s support team, creating a false sense of trust. Though the account appears legitimate, especially amid the panic triggered by the warning email, it’s a clever impersonation designed to manipulate users into handing over their credentials.
This scam takes a new, more dangerous turn compared to previous attacks, which usually claimed copyright violations and redirected victims to email responses. By bringing the communication directly onto Facebook Messenger, the attackers simulate the internal workings of the platform itself, making the scam even harder to detect.
A growing threat in 2025
Andrey Kovtun, Email Threats Protection Group Manager at Kaspersky, predicts that this type of scam will only become more common in 2025. As attackers continue to refine their methods, they are mimicking official services more closely than ever before. “Scams like this are becoming increasingly sophisticated, with attackers exploiting users’ trust in major platforms,” Kovtun explains.
Kaspersky advises businesses and individuals to stay vigilant and not fall for these types of schemes. If you receive any suspicious emails or messages claiming to be from Facebook, it’s crucial to verify the authenticity of the message. Kaspersky also urges users to enable two-factor authentication on all accounts to add an extra layer of protection.
How to stay safe from phishing scams
To protect against such attacks, Kaspersky offers these key tips:
- Enable Two-Factor Authentication (2FA): This is one of the most effective ways to safeguard your accounts.
- Be alert to suspicious logins: Keep an eye out for notifications about unusual login attempts and act swiftly if you notice anything odd.
- Use strong, unique passwords: Avoid reusing passwords across multiple platforms. Consider using a password manager to generate and store your passwords securely.
- Check URL addresses carefully: Before entering any credentials, always double-check the website’s URL for legitimacy. If something feels off, don’t proceed.
- Protect your devices: Ensure that all your work devices are equipped with reliable cybersecurity software that can block malicious attacks before they cause harm.
