Security News > 2024 > August > Facebook Ads Lead to Fake Websites Stealing Credit Card Information

Facebook users are the target of a scam e-commerce network that uses hundreds of fake websites to steal personal and financial data using brand impersonation and malvertising tricks.

The counterfeit websites and ads have been found to mainly impersonate a major online e-commerce platform and a power tools manufacturer, as well as single out victims with bogus sales offers for products from various well-known brands.

Another crucial distribution mechanism entails the use of fake user comments on Facebook to lure potential victims.

This is not the first time criminal e-commerce networks have sprung up with an aim to harvest credit card information and make illicit profits off fake orders.

Orange Cyberdefense revealed a previously undocumented traffic direction system called R0bl0ch0n TDS that's used to promote affiliate marketing scams through a network of fake shop and sweepstake survey sites with the goal of obtaining credit card information.

The development comes as fake Google ads displayed when searching for Google Authenticator on the search engine have been observed redirecting users to a rogue site that delivers a Windows executable hosted on GitHub, which ultimately drops an information stealer named DeerStealer.

News URL

https://thehackernews.com/2024/08/facebook-ads-lead-to-fake-websites.html