Discover how cybercriminals use Facebook to steal credentials
Crypto Trends & News

Discover how cybercriminals use Facebook to steal credentials

Cybercriminals pose as fake customers interested in products from pages intended for sales businesses so that victims download fraudulent files to their work devices.

Most Generation Z and Millennial users probably think that Facebook is an outdated social network. However, it is the most used application in the world. This means that a large part of the population sees the content that others upload and, therefore, the fact that cybercriminals resort to it to scam people is not unusual and happens more than we think.

According to the director of research and awareness at ESET Spain, Josep Albors, scammers send messages on Facebook with the aim of spreading files infected with malicious programs. The expert has detailed in a publication on the ESET Blog that, generally, the malware that spreads through the social network is used to steal credentials from the professional profiles of its victims.

How do they use Facebook to spread malware?

Previously, there had already been known cases in which attackers had used widely used social networks so that their victims could install computer viruses on their devices. On this occasion, ESET warns that they are specifically targeting professional profiles who promote their services and products through Facebook or other apps.

First of all, scammers contact professional Facebook page administrators with some excuse. According to Albors, in the fraudulent campaign detected, they pose as a potential customer requesting information to purchase a product.

For the administrator to fall into the trap, the fake customer does not specify what exactly he wants to buy, but asks about various aspects, such as the price or size. They then provide a link that directs to a file that is supposedly a screenshot of the product in question.

Since the seller has to answer the interested parties’ questions in order to sell, he or she will most likely download the document. Afterwards, you will want to enter it and, by doing so, you will be installing malware on the computer, mobile phone or other device you use at work.

Clues to detect that it is an Internet scam

The ESET professional emphasizes that there are several factors that give signs that the potential buyer’s profile is false. For example, if we access the information of said Facebook account, the social network will notify us that it is a newly created profile.

Additionally, you most likely do not follow anyone nor do you have any followers. We will also find few publications, only those that you have used for the profile and the account cover.

Latest News

Instagram Launches A Function That Helps You Recover Your Account If It Has Been Hacked

    Leave a Reply

    Your email address will not be published. Required fields are marked *