An increasing number of scams on Facebook targeting business accounts have been brought to our attention. Individuals pretend to be Facebook administrators and send messages to businesses claiming that their accounts will be deleted soon because they violate Facebook's terms and conditions. They accuse businesses of infringing copyright and trademark rights and posting inappropriate content. This is a worrying trend with high risk, and businesses should be aware of this fraudulent activity.
Over time, scammers have become very good at creating messages that cause panic and urgency. In this particular scam, they target businesses that rely on social media like Facebook to make the stakes seem higher. These messages usually include a call to action, urging the account holder to file a complaint if they believe the deletion notice is a mistake. However, this is where the attack comes in: the link they provide, which supposedly leads to a review request form, is actually a phishing tool that aims to steal sensitive information.
Once the unsuspecting business owner clicks on the link, they're led to a page similar to Facebook's interface. Here, they're prompted to enter their Facebook account details. Some versions of the scam go even further, asking for personal information or financial data.
The risks and consequences
If someone believed the message was legitimate, clicked the link and gave over personal data, it could result in the following:
Account Takeover
Scammers could gain complete control of your Facebook business account if they have access to your login credentials.
Identity Theft
Personal information from the scam could be used for malicious activities, including identity theft.
Financial Fraud
If you disclose financial information, it could lead to unauthorised transactions or financial losses.
What can you do?
To safeguard your business against such scams, it's essential to stay informed and vigilant:
Verify Messages
It is important to always double-check the authenticity of any alarming messages you receive by verifying them directly through Facebook's official channels.
Avoid Suspicious Links
Clicking on links in unsolicited messages is not recommended. Instead, to address any account issues, it is advised to visit the Facebook app or website directly.
Educate Your Team
Ensure your employees know about these scams, how to spot them and understand the importance of security practices.
Use Two-Factor Authentication
Enhance your account’s security by enabling two-factor authentication.
Social media plays a crucial role in the smooth functioning of many businesses and is a source of revenue for many more.. However, it is essential to be aware of the potential threats from social media and to adopt a cautious approach to online communications to protect your business. Your first line of defence against cyber threats is awareness.
Stay up-to-date with the latest insights and updates on protecting your business by following our blog and social channels.
If you need support in navigating these kinds of challenges and want to fortify your business against digital threats, consider reaching out to the North West Cyber Resilience Centre. Our team is dedicated to helping you to be cyber secure.
