I think the number is more than a quarter of the world’s population has a Facebook account, couple that with Meta’s international reputation for information security and ethics and so it is no surprise that it is a target for scammers and threat actors
Facebook phishing campaign nets millions in IDs and cash • The Register
The numbers for this phishing campaign are staggering – it has netted hundreds of millions of dollars, with just one of the landing pages being visited 2.7 million times last year and 8.5 million times in 2022! This has not just started last week, the real question is why has Facebook/Meta not been more successful in shutting these threat actors down?
They cite the fact that the phishing chain starts with a legitimate service, which Facebook/Meta could not shut down for fear of disrupting legitimate apps using the services – fair enough – but why not escalate the mitigation to those partners. They surely have a financial interest to keep their links with Facebook clean? If nothing else a Facebook wide publicity campaign to all users, at the top of their feeds, explaining and illustrating the problems and a word from that CEO or a Vice President, would help mitigate the issue.
Clive Catton MSc (Cyber Security) – by-line and other articles