Almost half a million users duped by Facebook phishing campaign

News
By
published

Think twice before opening that message from an 'old friend'

Person typing
(Image credit: Shutterstock)

After investigating a malicious message sent via Facebook Messenger, the researchers at CyberNews have uncovered a large-scale phishing campaign that has tricked close to 500k Facebook users.

The “Is that you” phishing scam first started circulating on the social network back in 2017. The scam begins with a message sent by one of a user's friends in which they claim to have found a video or image with them featured in it.

However, the message appears as a video that when clicked, leads a user through a chain of websites infected with malicious scripts. These scripts are able to determine a user's location, the device they're using and even its operating system.

From there, the scripts lead users to a Facebook phishing page to harvest their credentials and then if possible, infect a user's device with adware or other malware.

Is that you?

While the “Is that you” phishing scam has been around for years, the campaign discovered by CyberNews began operating at the end of January 2020 and so far 480,00 users have fallen victim to it with 77 percent of the victims residing in Germany.

Due to the large-scale nature of the campaign and how it appears to mainly target German users, the news outlet shared its report with CERT Germany, Facebook and the URL shortener service wal.ee which was used by the threat actor responsible.

At the same time, the threat actor also used a legitimate third-party web statistics service to track their campaign which is how CyberNews was able to uncover it in the first place and learn how many users were affected. 

Interested users can read the full report here and CyberNews recommends that those at risk of phishing use a password manager, two-factor authentication and remain vigilant when checking their messages online to avoid falling victim to this or other similar scams.

TOPICS
Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
healthcare
Software bug meant NHS information was potentially “vulnerable to hackers”
A hacker wearing a hoodie sitting at a computer, his face hidden.
Experts warn this critical PHP vulnerability could be set to become a global problem
botnet
YouTubers targeted by blackmail campaign to promote malware on their channels
A close-up of a phone screen showing the Telegram, Signal and WhatsApp apps
Agentic AI has “profound” issues with security and privacy, Signal President says
botnet
Another top security camera maker is seeing devices hijacked into botnet
Bluetooth
Top Bluetooth chip security flaw could put a billion devices at risk worldwide
Latest in News
Europe
Apple and Meta set to face fines for alleged breaches of EU DMA
Garmin Forerunner 965 on wrist in the dark
New Garmin leak suggests a release is days away, but don't get your hopes up for the Forerunner 975
Xbox Series X
Xbox is reportedly teaming up with a mystery manufacturer to launch a PC gaming handheld this year
Apple's Craig Federighi demonstrates the iPhone Mirroring feature of macOS Sequoia at the Worldwide Developers Conference (WWDC) 2024.
Report: iOS 19 and macOS 16 could mark their biggest design overhaul in years – and we have one request
Google Gemini Calendar
Gemini is coming to Google Calendar, here’s how it will work and how to try it now
Lego Mario Kart – Mario & Standard Kart set on a shelf.
Lego just celebrated Mario Day in the best way possible, with an incredible Mario Kart set that's up for preorder now
More about security
botnet

YouTubers targeted by blackmail campaign to promote malware on their channels
A hacker wearing a hoodie sitting at a computer, his face hidden.

Experts warn this critical PHP vulnerability could be set to become a global problem
Europe

Apple and Meta set to face fines for alleged breaches of EU DMA
See more latest
Most Popular
Europe
Apple and Meta set to face fines for alleged breaches of EU DMA
Garmin Forerunner 965 on wrist in the dark
New Garmin leak suggests a release is days away, but don't get your hopes up for the Forerunner 975
Xbox Series X
Xbox is reportedly teaming up with a mystery manufacturer to launch a PC gaming handheld this year
ExpressVPN's Lightway Turbo upgrade – promo image
Can fast be faster? ExpressVPN promises it’s possible
Vodafone logo outside a store in Sydney
Vodafone employees could lose bonuses if they’re not in office 8 days per month
An image of a Jackbox Games Party Pack
Jackbox games is coming to smart TVs in mid-2025, and I can’t wait to be reunited with one of my favorite party video games
Google Gemini Calendar
Gemini is coming to Google Calendar, here’s how it will work and how to try it now
Ryzen AI Max+ 395
Race to launch most powerful AI mini PC ever heats up as GMKTec confirms Ryzen AI Max+ 395 product for May 2025
Apple iPhone 16e
Which affordable phone wins the mid-range race: the iPhone 16e, Nothing 3a, or Samsung Galaxy A56? Our latest podcast tells all
Apple's Craig Federighi demonstrates the iPhone Mirroring feature of macOS Sequoia at the Worldwide Developers Conference (WWDC) 2024.
Report: iOS 19 and macOS 16 could mark their biggest design overhaul in years – and we have one request