Complete Story


The Makings of a Million-Dollar Facebook Phishing Campaign

Bank Info Security

A massive phishing campaign used stolen credentials to log into Facebook user accounts and send phishing page links leading to the victims' friends to harvest their credentials, say researchers at PIXM, a New York-based cybersecurity firm that focuses on artificial intelligence.

The campaign, which is reported to have deceived "hundreds of millions" of users of the social media platform via its instant messaging service Messenger, has been active since the fourth quarter of 2021, the researchers say.

PIXM discovered the scam when a victim attempted to visit one of the phishing links - a fake Facebook login portal - in September 2021. The report does not specify why the researchers have only now released their findings. To date, the landing page for this phishing website looks the same, the researchers say.


Printer-Friendly Version



The FRPA alert system distinguishes us from other groups by gathering and providing information to law enforcement, retailers AND financial institutions.

more information


Your electronic library to help in fighting financial fraud for all of our partners.

more information