securité informatique

Meta on phishing profiles: Strict action against scammers

Meta, formerly known as Facebook, has confirmed it has filed a complaint against cybercriminals who targeted its users with phishing scams across Facebook, Messenger, Instagram and WhatsApp.

The phishing campaign

The scammers responsible for these phishing operations used approximately 39,000 phishing pages that imitated the login pages of the four platforms. These phishing operations aimed to trick people into sharing their login credentials on fake login pages of popular platforms. Jessica Romero, Meta’s director of platform enforcement and litigation, said: This phishing scheme involved the creation of more than 39,000 websites mimicking the login pages of Facebook, Messenger, Instagram and WhatsApp. On these websites, people were asked to enter their usernames and passwords, which the defendants collected.
best free VPN to download

Meta has already taken legal action against cybercriminals

The action is the latest in a series of lawsuits filed by the popular platform against cybercriminals who target its users and other malicious actors who use Facebook for malicious reasons. According to BleepingComputer, as of March 2020, Facebook sued domain name registrar Namecheap and its Whoisguard proxy service “for registering domain names intended to deceive people by pretending to be affiliated with Facebook applications,” which were regularly used “for phishing, fraud and scams.”

Meta also sued domain registrar OnlineNIC and its privacy service ID Shield in October 2019 for allowing the registration of copied domains used in fraudulent schemes. Last week, Meta released a report titled “Threat Report on the Surveillance-for-Hire Industry,” in which it announced it had banned six suspected entities and a Chinese law enforcement provider that provided surveillance services for third-party targeting 50K people.

A lire également  Facebook's giant outage (finally) explained

What is phishing simulation?

Phishing simulation protects your business from social engineering threats by training your employees to identify and report them. Cybercriminals use phishing, a fraudulent attempt to obtain sensitive information such as credit card details and login credentials, by disguising themselves as a trustworthy organization or reputable person in an email communication. Phishing emails are also used to distribute malware and spyware through links or attachments that can steal information and perform other malicious tasks.

Typically integrated with user security awareness, phishing simulation training is one of the cybersecurity measures used to help stop phishing attempts. Phishing is popular with cybercriminals because it allows them to steal financial and personal information by exploiting human behavior. Since a single mistake made by an employee while clicking on a link can lead to fraud, data breach, huge costs and damage to the company’s reputation, user security awareness is now widespread; Employers educate their employees on the latest attack techniques and test them using phishing simulations to help protect their businesses against cybercrimes.

Typically integrated with user security awareness, phishing simulation training is one of the cybersecurity measures used to help stop phishing attempts. Phishing is popular with cybercriminals because it allows them to steal financial and personal information by exploiting human behavior. Since a single mistake made by an employee while clicking on a link can lead to fraud, data breach, huge costs and damage to the company’s reputation, user security awareness is now widespread; Employers educate their employees on the latest attack techniques and test them using phishing simulations to help protect their businesses against cybercrimes.