An extension to recover the old version of Facebook -
The social network Facebook seems to be once again the target of a phishing campaign, reports Cyberwar.
It is more particularly the Facebook pages which are targeted and which receive strange emails.
The origin of these emails?
Facebook teams, so-called.
"Hello, we need to inform you that your page has been flagged for unusual and illegal activity, so your page will be deleted permanently", here is an example of an email signed by "the Facebook security team" and sent to a manager of a page on the social platform.
A second message also sent by “Page Flagged” (page flagged) and not by a certified Facebook account specifies that a representative of the company will contact him shortly to discuss the situation.
More so, the sender indicates that there is a procedure to appeal and prevent their page from being permanently deleted and even attaches the link to the so-called form.
The site to which it refers seems legitimate since the URL begins with "https://facebook.com".
Before being able to complete the form from the new site, the targets will have to identify themselves again.
Unfortunately, the page in question is a decoy, as is the connection framework which simply allows you to retrieve the identifiers of the victims.
With one detail
The site in question was indeed bogus, despite the presence of "facebook.com" in the URL.
The hackers simply used a subdomain to trick their victims into thinking they were on a legitimate Facebook page, when in fact, on closer inspection, the URL ended in ".top", specifies Cyberwar.
It was therefore indeed a well-made false page.
Obviously, the objective of this campaign is to steal the identifiers of users who manage Facebook pages, in order to be able to usurp their identity and disseminate their phishing campaigns on these pages by abusing their reputation and their subscribers.
The page behind the emails appears to have been destroyed by Facebook, but there is a good chance that the hackers behind the campaign will repeat their attack.
In summary, do not always trust the emails sent by "Facebook teams" and double check the entire URL to which you are sent.
Facebook: The personal data of 267 million accounts for sale on the dark web for 500 euros
Phishing: "Hackers" try to pass themselves off as the national police ... with spelling errors