A large-scale phishing campaign has emerged, exploiting Meta\u2019s Business Suite to compromise credentials across thousands of small and medium-sized businesses worldwide.<\/p>\n
Check Point security researchers identified approximately 40,000 phishing emails distributed to more than 5,000 customers, primarily targeting industries including automotive, education, real estate, hospitality, and finance across the U.S., Europe, Canada, and Australia.<\/p>\n
The sophisticated attack leverages legitimate Meta infrastructure, making detection substantially more difficult than traditional phishing attempts.<\/p>\n
The campaign demonstrates a troubling evolution in threat tactics. Rather than relying on spoofed domains and fake infrastructure, attackers have weaponized Meta\u2019s native Business invitation feature to establish credibility.<\/p>\n
This approach exploits user trust in established platforms and circumvents conventional email security filters<\/a> that typically flag suspicious sender addresses.<\/p>\n By originating from the legitimate facebookmail.com domain, these messages appear authentic and indistinguishable from genuine Meta notifications.<\/p>\n Check Point security analysts identified<\/a> the campaign after observing repetitive patterns in email subjects and structure consistent with template-driven mass distribution.<\/p>\n The attackers created fraudulent Facebook Business pages adorned with official Meta branding and logos, then deployed these fake pages to send Business Portfolio invitations containing embedded malicious links.<\/p>\n Recipients were redirected to credential harvesting pages hosted on domains such as vercel.app, where sensitive information was extracted and intercepted.<\/p>\n The infection mechanism relies on social engineering and domain trust exploitation. Emails utilized urgent language such as \u201cAction Required,\u201d \u201cYou\u2019re Invited to Join the Free Advertising Credit Program,\u201d and \u201cAccount Verification Required,\u201d compelling users to click embedded links.<\/p>\n The messages perfectly mimicked legitimate Meta notifications, including proper formatting and branding elements.<\/p>\n Once victims clicked the links, they were redirected to phishing websites designed specifically to capture login credentials and other sensitive account information.<\/p>\n Organizations should implement multi-factor<\/a> authentication to prevent unauthorized access even when credentials are compromised.<\/p>\n Additionally, employees must receive training emphasizing credential verification and cautious link evaluation, regardless of sender legitimacy.<\/p>\n Advanced email security solutions<\/a> incorporating behavioral analysis and artificial intelligence-driven detection provide enhanced protection against this evolving threat landscape.<\/p>\n Direct navigation to official Meta accounts rather than clicking email links represents another crucial defensive measure against these sophisticated credential theft attempts.<\/p>\n Follow us on\u00a0Google News<\/a>,\u00a0LinkedIn<\/a>,\u00a0and\u00a0X<\/a>\u00a0to Get More Instant Updates<\/strong>,\u00a0Set CSN as a Preferred Source in\u00a0Google<\/a>.<\/strong><\/p>\n The post New Phishing Attack Targeting Meta Business Suite Users to Steal Login Credentials<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\n![\"Example](\"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiLTUCi88ndpEswyjw5lTu4QadSUPRry0HgelRxZEdcT7gu3Q7vSG1DTxEHxJWdZ0a9JWnTTZvOsMhyphenhyphenECzJkIG7yxcU0G9me4E5YeJUcTpGu6_ZbET9iSH4kh7D6pjMFULi8y9pDZLxoK4dBK1a2qdYFC0T8huVkkZrJvXCq0Yt79g6q67RSPu2__CbZaI\/s16000\/Example%2520of%2520a%2520real%2520phishing%2520email%2520we%2520caught%2520%28Source%2520-%2520Check%2520Point%29.webp?ssl=1\")
New Phishing Attack<\/strong><\/h2>\n