Hackers Leverage Facebook’s Ads Manager to Send Credential Harvesting Links in Phishing Campaign: Avanan

Researchers at Avanan, a Check Point Company, have discovered threat actors using Facebook’s Ads manager to create a lead generation form where users can enter their email addresses and other information to obtain personal assets. As a result of this discover, Avanan has published its newest attack brief analyzing hackers using the legitimacy of Facebook to steal credentials and critical personal information using static expressway techniques to target end users. 

This campaign sends emails from what appears to be from Facebook’s (Meta’s) ad manager team claiming that an ad doesn’t comply with their policies. Thus the ad account is disabled, prompting users to create an appeal using the provided link to a lead generation form to rectify the issue.

You can read the brief here.

One Response to “Hackers Leverage Facebook’s Ads Manager to Send Credential Harvesting Links in Phishing Campaign: Avanan”

  1. […] Hackers Leverage Facebook’s Ads Manager to Send Credential Harvesting Links in Phishing Campaign: … […]

Leave a Reply

%d bloggers like this: