1 min read

Massive Phishing Attack Scammed Millions of Facebook Messenger Users

According to research conducted by the cybersecurity firm PIXM, there is a massive phishing campaign that peaked in April and May of this year (2022) and it is still ongoing.

The campaign has lured millions of unsuspecting users to phishing pages by abusing Facebook and Facebook Messenger and tricking users into entering their account credentials.

Worse, the hackers then used those credentials to send additional phishing messages to friends of the affected users, luring them in as well and continuing the chain.

All told, the group behind the attack has been able to generate millions of dollars in revenue using these tactics.

Worst of all is that PIXIM’s research shows that this has been a long running campaign.  Although the group has only recently discovered it, the evidence they’ve uncovered shows that the campaign has been ongoing since at least September of 2021.

The Research is Ongoing

The group’s research is ongoing but so far they’ve found more than four hundred Facebook accounts tied to the campaign, which contain hooks to phishing pages.  Some of these poisoned profile pages have only been viewed a few thousand times. In other cases, they boast millions of views and of course, each view represents another potential victim.

There’s No End in Sight

Based on what the group has been able to piece together, they determined that in 2021 a total of 2.7 million users had visited one of the phishing pages. As of today, more than 8.5 million people have been lured to the phishing pages with no clear end in sight.

While this represents a tiny fraction of the total number of Facebook users on the platform, it is nonetheless a massive campaign.  If you’re a regular Facebook user, stay vigilant.  There are groups out there right now that are actively trying to lure you in and steal your data.  Don’t let that happen to you, your family, friends, or your coworkers.

Used with permission from Article Aggregator

IT Threat Intelligence: Is Your Firm Seeing The Whole Picture?

IT Threat Intelligence: Is Your Firm Seeing The Whole Picture?

Law firms today are sitting on a digital goldmine. From sensitive client communications and trade secrets to financial records and intellectual...

Read More
Mastering Digital Evidence: How Law Firms Turn Data into Trial-Winning Proof

Mastering Digital Evidence: How Law Firms Turn Data into Trial-Winning Proof

In 2011, a jury found Casey Anthony not guilty of murdering her two-year-old daughter. Later reviews revealed two key digital-evidence failures:...

Read More
The Predictive Edge: Turning Case Management Data Into Litigation Strategy

The Predictive Edge: Turning Case Management Data Into Litigation Strategy

The legal world is changing faster than a judge can say "sustained." Gone are the days when successful litigation relied solely on courtroom...

Read More

E-Mail From Department Of Labor Could Be Phishing Attack

There is a new phishing campaign to keep a watchful eye on according to email security firm INKY. It’s a particularly fiendish one.

Read More

Recognizing and Avoiding Email Scams 

Phishing, a deceptive practice aimed at stealing sensitive information from unsuspecting individuals, has emerged as one of the most prevalent and...

Read More

The Rising Threat of Cyber Attacks: A Modern Challenge

Cyber threats have transformed significantly over the years, progressing from basic spyware in the early 2000s to today’s sophisticated attacks that...

Read More