A new phishing campaign targets Facebook users with business account pages by sending fake threats of copyright infringement from a Salesforce email address, in order to harvest the organization’s credentials.

Quick Details

The campaign was recently discovered by researchers at IT security software provider Check Point. Emails utilizing Saleforce’s automated mailing service were sent to over 12,000 people in companies in the EU, US and Australia. The messages, which appear to come from no*****@sa********.com, direct the recipients to a fake Facebook support page to input their admin credentials. From here, the perpetrators can take over the organization’s Facebook page and manipulate it as they see fit.

Learn more here: https://blog.knowbe4.com/facebook-users-beware-thousands-hit-by-new-phishing-scam