A large-scale phishing campaign exploits Facebook’s Business Suite infrastructure to deliver convincing fraudulent notifications, targeting over 5,000 businesses worldwide. This method leverages trusted Meta domains and features to deceive organizations, highlighting the evolving tactics of cyber threat actors. #MetaBusiness #FacebookPhishing
Keypoints
- The phishing campaign distributed over 40,000 emails to organizations in multiple countries.
- Attackers create fake Facebook Business pages and abuse the invitation feature to send fraudulent messages.
- The emails mimic genuine Facebook notifications with urgent and convincing subject lines.
- Most affected organizations are small to mid-sized businesses trusting Meta communications.
- Organizations should enhance security awareness, deploy AI-driven email security, and verify sender identities through official channels.
Read More: https://gbhackers.com/meta-business-suite/