top of page
  • Writer's pictureJacob Alcock

Beware of the rising Facebook scam threatening your business account

An increasing number of scams on Facebook targeting business accounts have been brought to our attention. Individuals pretend to be Facebook administrators and send messages to businesses claiming that their accounts will be deleted soon because they violate Facebook's terms and conditions. They accuse businesses of infringing copyright and trademark rights and posting inappropriate content. This is a worrying trend with high risk, and businesses should be aware of this fraudulent activity.


Over time, scammers have become very good at creating messages that cause panic and urgency. In this particular scam, they target businesses that rely on social media like Facebook to make the stakes seem higher. These messages usually include a call to action, urging the account holder to file a complaint if they believe the deletion notice is a mistake. However, this is where the attack comes in: the link they provide, which supposedly leads to a review request form, is actually a phishing tool that aims to steal sensitive information.


Once the unsuspecting business owner clicks on the link, they're led to a page similar to Facebook's interface. Here, they're prompted to enter their Facebook account details. Some versions of the scam go even further, asking for personal information or financial data.


The risks and consequences

If someone believed the message was legitimate, clicked the link and gave over personal data, it could result in the following:


Account Takeover
  • Scammers could gain complete control of your Facebook business account if they have access to your login credentials.

Identity Theft 
  • Personal information from the scam could be used for malicious activities, including identity theft.

Financial Fraud 
  • If you disclose financial information, it could lead to unauthorised transactions or financial losses.


What can you do?

To safeguard your business against such scams, it's essential to stay informed and vigilant:


Verify Messages 
  • It is important to always double-check the authenticity of any alarming messages you receive by verifying them directly through Facebook's official channels.

Avoid Suspicious Links
  • Clicking on links in unsolicited messages is not recommended. Instead, to address any account issues, it is advised to visit the Facebook app or website directly.

Educate Your Team
  • Ensure your employees know about these scams, how to spot them and understand the importance of security practices.

Use Two-Factor Authentication
  • Enhance your account’s security by enabling two-factor authentication.


Social media plays a crucial role in the smooth functioning of many businesses and is a source of revenue for many more.. However, it is essential to be aware of the potential threats from social media and to adopt a cautious approach to online communications to protect your business. Your first line of defence against cyber threats is awareness.


Stay up-to-date with the latest insights and updates on protecting your business by following our blog and social channels.


If you need support in navigating these kinds of challenges and want to fortify your business against digital threats, consider reaching out to the North West Cyber Resilience Centre. Our team is dedicated to helping you to be cyber secure. 






Comments


How can we support your business?

Phishing 292 x 219px.png

Raise your staff's awareness of phishing emails and guard your business against the growing trend of social-engineering threats.

 

Training your employees on what a phishing attack looks like makes them more likely to identify and report scams.

security awareness training.png

Our training package is designed and delivered by cyber experts giving you access to the most up-to-date information in an ever-changing cyber landscape.

You can purchase single-place training spots or a cyber security workshop.

Community Members

Our premium membership package is aimed at medium-sized businesses and includes bespoke security awareness training sessions.

 

This allows your business to train several cyber security champions and an assessment of your cyber risk. 

bottom of page