Kaspersky Finds New Phishing Scheme Targeting Business Accounts On Facebook

The display of fraudulent emails claiming to be Meta (Doc. Kaspersky)

JAKARTA - Cybersecurity experts Kaspersky discovered a new type of phishing targeting businesses promoting their home page on Facebook, claiming to be representatives of Meta.

In its findings, experts say that the fraudster sent an email allegedly in the name Meta for Business, claiming that the user's page contains prohibited content. The email suggests users to provide explanations so that their account and page can be unblocked via a link.

Links in the email then directed users to Facebook Messenger. On Messenger, accounts claiming to be Facebook support teams seem legitimate, thus creating the victim's trust.

"The main goal of attackers is most likely to gain access to user business accounts," the company said in a written statement on Friday, December 27.

Kaspersky's anonymous data shows that such emails began reaching users on December 14, with complaints coming from organizations around the world, including the Asia Pacific region.

This kind of fraud is becoming more sophisticated as attackers try to emulate official services in detail. Users must remain vigilant, verify message authenticity, and avoid clicking suspicious links, said Andrey Kovtun, Email Threat Protection Group Manager at Kaspersky.

Kaspersky advises users not to engage with suspicious accounts and activate additional security measures, such as two-factor authentication.

If you receive such an email, report the incident to the Facebook support team and immediately update your password if any information has been compromised," concluded Andrey.