This new malware can control Facebook business accounts: Report


A new phishing campaign has been discovered distributing info-stealing malware that can take over Facebook business accounts by using malicious links disguised as office tools. The malware, called NodeStealer 2.0 and written in Python, is capable of stealing cryptocurrency and exfiltrating data through Telegram. The malware steals Facebook business account credentials by connecting to the Meta Graph API with the victim’s user ID and access token and replaces the legitimate user’s email address with a mailbox under the attacker’s control, locking them out of the account indefinitely.

Leave a Reply