According to a new report, Facebook Messenger users in at least 84 countries in Europe, Asia, MEA region, North and South America have been hit by fraudulent activities. Digital Risk Protection (DRP) analysts at Group-IB, a Singapore-based threat hunting and enemy-centric cyber intelligence company, have detected this “large-scale fraudulent activity.” They claimed that cybercriminals distributed ads promoting the so-called updated version of Facebook Messenger and harvested user login credentials. The organization stated that they have informed Facebook of this online fraud.

According to a Group-IB blog post, DRP analysts discovered nearly 1,000 fake Facebook profiles used in the project. The report also pointed out that the scam received attention for the first time in the summer of 2020, and DRP analysts in Asia and Europe found traces of fraudulent activities. The company said: “In April, the number of Facebook posts inviting users to install the’Latest Messenger Update’ reached 5,700.”

In order to attract users’ attention, it is reported that fraudsters registered accounts with names that mimic real applications (such as Messanger, Meseenger, Masssengar, etc.) and used Facebook Messenger’s official logo as a personal avatar. Group-IB said that in order to facilitate Facebook’s review process and bypass its scam filters, scammers used the services created with the help of linktr.ee, bit.ly, cutt.us, cutt.ly and rb.gy Shortened link. .

In addition, they provide users with discounts in the form of some non-existent features, such as finding out who has accessed their personal data and seeing deleted messages. In some cases, users are also provided with the right to transfer to Gold Messenger. In addition, scammers can also blackmail users from users in other ways. If they do not register on the fake page, their accounts will be banned forever.

READ  Report: 33% of US ICO investors said the founders deliberately deceived them or concealed key information

These caused users to click on malicious links and provided them with a fake Facebook Messenger website with a login form. They were asked to enter their certificates from the stolen. The company stated: “Scammers used blogspot.com, sites.google.com, github.io and godaddysites.com to register fake Facebook Messenger login pages.” Canada, France, Germany, Italy, Malaysia, Singapore, South Africa and Users in the United States and other countries/regions unknowingly leaked their personal data and hijacked their accounts, becoming victims of the plan.


Is OnePlus 9R old wine in a new bottle or something else? We discussed it on the gadget 360 podcast Orbital. Later (from 23:00), we will discuss the new OnePlus watch. Orbital is available for Apple Podcast, Google Podcast, Spotify and wherever you get a Podcast.