A new phishing campaign is targeting businesses with fake Facebook copyright notices, impacting over 12,000 email addresses across the EU, US, and Australia since December 20, 2024. Scammers use Salesforce’s automated mailing service to send deceptive emails from noreply@salesforce.com, making them appear legitimate, and falsely accuse recipients of copyright infringement related to Universal Music Group. Victims are directed to a fraudulent Facebook support page that mimics the real interface, prompting them to enter their credentials under the pretense of resolving account restrictions. Once cybercriminals gain access, they can alter content, manipulate messaging, delete posts, and modify security settings, leading to reputational damage, client losses, and potential legal consequences. To combat such threats, businesses should implement incident response plans, monitor suspicious login activity, and train employees to verify account status before responding to such emails. Continue here.
