Security News > 2022 > June > Malicious Messenger chatbots used to steal Facebook accounts
A new phishing attack is using Facebook Messenger chatbots to impersonate the company's support team and steal credentials used to manage Facebook pages.
In a new campaign discovered by TrustWave, threat actors use chatbots to steal credentials for managers of Facebook pages, commonly used by companies to provide support or promote their services.
The phishing attack starts with an email informing the recipient that their Facebook page has violated Community Standards, giving them 48 hours to appeal the decision, or their page will be deleted.
The Facebook page associated with the chatbot is a standard business page with zero followers and no posts.
The victims land on an actual Facebook page containing intellectual property and copyright guidelines that are supposedly relevant to the user's violation.
These types of scams are harder to detect, as many sites utilize AI and chatbots as part of their support pages, making them seem normal when encountered when opening support cases.