Threat actors have launched a new phishing campaign aimed at exfiltrating Facebook credentials, reports ZDNet.
Attackers have been sending phishing emails purporting to be from "The Facebook Team" warning recipients that their account may be disabled and removed due to violating other users' rights, according to a report from Abnormal Security. Recipients of the email are being lured into clicking a link that redirects to a Facebook post, which in turn contains another link redirecting to another website where they may send their appeal.
Researchers noted that users have been asked to provide their names, email addresses, Facebook passwords, and other data for the fraudulent appeals process. Information collected through the fake appeals form could then be leveraged for accessing and locking Facebook accounts, as well as compromise other websites and apps using the same email address and password as their Facebook account. The sense of urgency brought by the emails has made such phishing attacks a success, researchers said.
"This is often enough to convince recipients to provide their personal information, particularly if they are using their Facebook account for business purposes," said Abnormal Security Threat Intelligence Analyst Rachelle Chouinard.
Ahead of its imminent approval, the Biden administration's proposed executive order mandating U.S. cloud infrastructure-as-a-service providers to strengthen the verification of their users' identities has received industry opposition due to the increased financial and logistical burdens that would arise from such a rule, according to The Record, a news site by cybersecurity firm Recorded Future.
U.S. independent record label Empire Distribution, which has worked with Kendrick Lamar, Snoop Dogg, and 50 Cent, had its sensitive data exposed as a result of an environment file misconfiguration, Cybernews reports.