A new phishing campaign is utilising facebook posts in its attack chain. This approach is used to trick victims into giving away their account credentials and personally identifiable information or PII. The post claims to be from facebook’s “Page Support” and disguises to be a copyright violation notification. The user is prompted to make an appeal through a crafted phishing page that mimics the actual facebook copyright appeal page. The page contains a form where victims are requested to enter their full name, email address, phone number and Facebook username. Upon submission of the page, the victim’s IP address and geolocation information is also collected and sent to the attacker’s telegram account
This segment was created for the It’s 5:05 podcast