21 December 2021

Meta takes legal action against people behind Facebook, Messenger, Instagram and WhatsApp phishing attacks


Meta takes legal action against people behind Facebook, Messenger, Instagram and WhatsApp phishing attacks

Meta, a parent company of Facebook, has filed a federal lawsuit in California court to disrupt phishing attacks against Facebook, Messenger, Instagram and WhatsApp users.

The malicious actors behind these attacks created more than 39,000 websites impersonating the login pages of Facebook, Messenger, Instagram and WhatsApp where visitors were prompted to enter their usernames and passwords that were then collected by the defendants.

According to Jessica Romero, Meta's Director of Platform Enforcement and Litigation, the attackers used a relay service, Ngrok, to redirect internet traffic to the phishing websites to conceal the true location of the phishing websites, and the identities of their online hosting providers and the defendants.

Meta said that the volume of these attacks has increased since March 2021, and it worked with the relay service to suspend thousands of URLs to the phishing websites.

“This lawsuit is one more step in our ongoing efforts to protect people’s safety and privacy, send a clear message to those trying to abuse our platform, and increase accountability of those who abuse technology. We will also continue to collaborate with online hosting and service providers to identify and disrupt phishing attacks as they occur,” Romero said.

Last week, Facebook announced it disrupted operations of seven “cyber mercenary” companies that created over 1,500 fake accounts used to target more than 50,000 people in over 100 countries. The list of exposed companies include Israel-based Cobwebs Technologies, Cognyte, Black Cube, and Bluehawk CI, an Indian outfit BellTroX, a North Macedonian company Cytrox, and an unknown entity operating out of China.


Back to the list

Latest Posts

The story of the four bears: Brief analysis of APT groups linked to the Russian government

The story of the four bears: Brief analysis of APT groups linked to the Russian government

In “The Four Bears” series we will tell you about the APT groups known as Fancy Bear, Cozy Bear, Voodoo Bear, and Berserk Bear.
17 January 2022
Cybersecurity year in review: Most notable APT hacks of 2021

Cybersecurity year in review: Most notable APT hacks of 2021

In 2021 nation-state actors somewhat faded into the background, but they still pose a significant threat.
17 January 2022
Hackers put up for sale data of 2M ONUS customers after the company refused to pay $5 million ransom

Hackers put up for sale data of 2M ONUS customers after the company refused to pay $5 million ransom

The attackers exploited the Log4Shell vulnerability on ONUS’ Cyclos server to plant backdoor and exfiltrate data.
30 December 2021