A new and highly deceptive Facebook scam has emerged in recent times, targeting businesses and organizations with Facebook pages. Scammers send private messages to page owners, claiming that someone has accessed their Facebook business account.
The message urges recipients to take immediate action by answering security questions and changing their password via a suspicious link. However, this is a scam designed to steal login credentials and compromise accounts.
This article will provide an in-depth look at how the “It Looks Like Someone Accessed Your Facebook Business” scam operates, how to identify it, and what steps to take if you fall victim. With online scams constantly evolving, it’s vital to stay vigilant and protect your social media accounts.
Overview of the Scam
The “It Looks Like Someone Accessed Your Facebook Business” scam is essentially a phishing scheme targeting Facebook users with business pages or accounts. Scammers send convincing private messages to unsuspecting page owners, duping them into giving up sensitive login information.
Here is how the Facebook message looks:
Hello Admin, It looks like someone accessed your Facebook Business and paid an unusual invoice. To secure your business, you need to answer a few questions and change your password the next time you visit Facebook. Sincerely thank! Meta security group Secure your account now: [malicious link]
Here is a step-by-step overview of how this scam typically operates:
Scammers Create Fake Facebook Security Accounts
The scammers begin by setting up fake Facebook accounts with names like “Facebook Business Security”, “Facebook Security Team”, “Facebook Account Protection” etc. The profiles often use Facebook’s logo and imagery to appear more legitimate.
Private Message is Sent to Targets
Using the fake accounts, the scammers send private messages to Facebook page owners, claiming their business account has been “accessed by an unknown entity”. The message urges the recipient to take action to secure their account.
Fear Tactics Used in Message
To generate urgency and panic, the message may claim that someone has already paid an invoice using the compromised account. The scammers typically demand that the recipient answers security questions and changes their password immediately.
Phishing Link Included
A malicious link is inserted within the message, which redirects to a fake Facebook login page controlled by the scammers. Users who click it are prompted to enter their credentials, which are stolen.
Login Credentials Harvested
Once users visit the phishing page and enter their username/password, the scammers can gain full access to their Facebook accounts. All personal data, messages, and contacts are exposed.
Accounts Compromised
With the stolen login info, the scammers can take over Facebook business pages. They may change passwords, spread more scam links, post malicious content, or engage in other fraudulent activities. The page owner loses complete control.
This scam is especially dangerous because it targets business accounts specifically. Compromising these pages can have devastating effects on a company’s reputation and operations. Awareness is key to avoiding this scam.
How the Scam Works in Detail
Now that you understand the general premise of this scam, let’s delve deeper into the specific techniques used by the fraudsters to ensnare victims:
1. Impersonating Legitimate Facebook Messages
The first step of this scam involves impersonating Facebook itself. The scammers register accounts with variations of the name “Facebook Business Security”, and design the profile to precisely mimic Facebook’s official account.
The profile picture, header image, and “about info” all mirror the real Facebook page. This tricks recipients into thinking the message comes directly from Facebook, making them more likely to trust it.
2. Crafting Messages That Appear Genuine
The scam messages are carefully crafted to seem like authentic security alerts from Facebook. They address the recipient personally as “admin” to establish familiarity.
The subject line states that the business account has been “accessed”, while the message claims an “unusual invoice” was paid. This makes it appear as if money has already been stolen from the account.
3. Inserting Deceptive Phishing Links
The most crucial element of the scam message is the embedded phishing link. The scammers claim this link leads to Facebook’s security center, where users can answer questions and reset passwords.
In reality, it goes to a fake Facebook login page the scammers control. They design it to precisely mirror the real Facebook site, so victims enter their credentials without realizing it’s fraudulent.
4. Exploiting User Psychology
On a psychological level, this scam exploits several human vulnerabilities. Firstly, it banks on people responding urgently to security alerts without verifying legitimacy. The claim that the account is already compromised pressures victims to act fast.
Secondly, it preys on the fear of losing one’s livelihood. For businesses that depend on Facebook, account security is paramount. The threat of invoices being paid or accounts compromised therefore generates immense stress.
Lastly, it banks on people trusting messages that appear to come from friends. The personalized “admin” greeting exploits this tendency. Overall, the scam manipulate emotions and psychology to compromise victims.
5. Stealing Login Credentials
Once a user clicks the embedded link, they are taken to the fake Facebook login page. Here, they enter their username and password, believing they are securing their account. In reality, all credentials are harvested by the scammers.
With the stolen login info, the scammers gain full access to both the user’s personal profile and business pages. This allows them to take over accounts, spread more scam links, and perpetuate additional frauds.
6. Potentially Devastating Impact on Businesses
For small businesses and organizations relying on their official Facebook presence, this scam can be catastrophic. Losing access to the account destroys their ability to reach customers and destroys the brand’s reputation.
Scammers may change account details, post offensive material, or spread viruses. Compromised business accounts also suffer severely decreased reach, as Facebook’s algorithm suppresses fraudulent pages.
Essentially, the scam can wipe out a company’s entire online presence. All the time, money and effort invested in building a brand on Facebook can vanish overnight. It is therefore crucial for organizations to learn how to avoid this scam.
What to Do If You Have Fallen Victim
If you receive the “It Looks Like Someone Accessed Your Facebook Business” message and entered your login details, your account is likely compromised. Here are the key steps to take immediately:
1. Reset Your Facebook Password
First and foremost, reset your Facebook password immediately. Don’t use the reset link in the scam message. Instead, visit Facebook directly and use the official password reset process.
Generate a strong, randomized password that scammers can’t guess. Enable two-factor authentication for added security.
2. Check Accounts for Suspicious Activity
Thoroughly review your Facebook account and pages for any suspicious activity. Look for odd posts you didn’t create, changed account details, new page admins etc.
Also check your Facebook ads dashboard and payments settings for unauthorized ad campaigns or transactions.
3. Revoke Access from Unknown Sessions
In your Facebook security settings, you can view and revoke access from any unknown or suspicious sessions. This will log out the scammers from your account.
4. Scan Devices for Malware
The phishing link you clicked may have downloaded malware onto your device designed to steal data. Scan your computer, phone and network for viruses.
5. Contact Facebook Support
Reach out to Facebook directly via their help center or dedicated security channels like Facebook Protect. Report fraudulent accounts and unauthorized access.
6. Issue Warnings About Compromised Accounts
Alert your followers both on Facebook and other channels that your account was compromised. Let them know any odd messages they received were not from you.
7. Monitor Accounts Closely
Keep monitoring your Facebook account over the next few weeks for further unauthorized access. Attackers often wait then return to already compromised accounts.
8. Change Passwords on Other Accounts
If you reuse the same password across multiple accounts, change it everywhere immediately. Scammers leverage stolen passwords to access your other online accounts.
9. Review Credit Card Statements
Check your credit card statements closely for any unfamiliar charges. Scammers may have made unauthorized transactions using your Facebook payment information.
10. File a Police Report
For businesses, you may need to file a formal police report regarding the account hacking for insurance purposes. This creates an official record of the scam.
Falling victim to this scam can jeopardize your business, so take swift action to contain the damage. Prevent future attacks by becoming aware of the scam tactics.
Is Your Device Infected? Scan for Malware
If your computer or phone is slow, showing unwanted pop-ups, or acting strangely, malware could be the cause. Running a scan with Malwarebytes Anti-Malware Free is one of the most reliable ways to detect and remove harmful software. The free version can identify and clean common infections such as adware, browser hijackers, trojans, and other unwanted programs.
Malwarebytes works on Windows, Mac, and Android devices. Choose your operating system below and follow the steps to scan your device and remove any malware that might be slowing it down.
Malwarebytes for WindowsMalwarebytes for MacMalwarebytes for Android
Run a Malware Scan with Malwarebytes for Windows
Malwarebytes stands out as one of the leading and widely-used anti-malware solutions for Windows, and for good reason. It effectively eradicates various types of malware that other programs often overlook, all at no cost to you. When it comes to disinfecting an infected device, Malwarebytes has consistently been a free and indispensable tool in the battle against malware. We highly recommend it for maintaining a clean and secure system.
Download Malwarebytes
Download the latest version of Malwarebytes for Windows using the official link below. Malwarebytes will scan your computer and remove adware, browser hijackers, and other malicious software for free.
(The above link will open a new page from where you can download Malwarebytes)
Install Malwarebytes
After the download is complete, locate the MBSetup file, typically found in your Downloads folder. Double-click on the MBSetup file to begin the installation of Malwarebytes on your computer. If a User Account Control pop-up appears, click “Yes” to continue the Malwarebytes installation.
Follow the On-Screen Prompts to Install Malwarebytes
When the Malwarebytes installation begins, the setup wizard will guide you through the process.
You’ll first be prompted to choose the type of computer you’re installing the program on—select either “Personal Computer” or “Work Computer” as appropriate, then click on Next.
Malwarebytes will now begin the installation process on your device.
When the Malwarebytes installation is complete, the program will automatically open to the “Welcome to Malwarebytes” screen.
On the final screen, simply click on the Open Malwarebytes option to start the program.
Enable “Rootkit scanning”.
Malwarebytes Anti-Malware will now start, and you will see the main screen as shown below. To maximize Malwarebytes’ ability to detect malware and unwanted programs, we need to enable rootkit scanning. Click on the “Settings” gear icon located on the left of the screen to access the general settings section.
In the settings menu, enable the “Scan for rootkits” option by clicking the toggle switch until it turns blue.
Now that you have enabled rootkit scanning, click on the “Dashboard” button in the left pane to get back to the main screen.
Perform a Scan with Malwarebytes.
To start a scan, click the Scan button. Malwarebytes will automatically update its antivirus database and begin scanning your computer for malicious programs.
Wait for the Malwarebytes scan to complete.
Malwarebytes will now scan your computer for browser hijackers and other malicious programs. This process can take a few minutes, so we suggest you do something else and periodically check the status of the scan to see when it is finished.
Quarantine detected malware
Once the Malwarebytes scan is complete, it will display a list of detected malware, adware, and potentially unwanted programs. To effectively remove these threats, click the “Quarantine” button.
Malwarebytes will now delete all of the files and registry keys and add them to the program’s quarantine.
Restart your computer.
When removing files, Malwarebytes may require a reboot to fully eliminate some threats. If you see a message indicating that a reboot is needed, please allow it. Once your computer has restarted and you are logged back in, you can continue with the remaining steps.
Once the scan completes, remove all detected threats. Your Windows computer should now be clean and running smoothly again, free of trojans, adware, and other malware.
If your current antivirus allowed this malicious program on your computer, you may want to consider purchasing Malwarebytes Premium to protect against these types of threats in the future. If you are still having problems with your computer after completing these instructions, then please follow one of the steps:
Malwarebytes for Mac is an on-demand scanner that can destroy many types of malware that other software tends to miss without costing you absolutely anything. When it comes to cleaning up an infected device, Malwarebytes has always been free, and we recommend it as an essential tool in the fight against malware.
Download Malwarebytes for Mac.
You can download Malwarebytes for Mac by clicking the link below.
When Malwarebytes has finished downloading, double-click on the setup file to install Malwarebytes on your computer. In most cases, downloaded files are saved to the Downloads folder.
Follow the on-screen prompts to install Malwarebytes.
When the Malwarebytes installation begins, you will see the Malwarebytes for Mac Installer which will guide you through the installation process. Click “Continue“, then keep following the prompts to continue with the installation process.
When your Malwarebytes installation completes, the program opens to the Welcome to Malwarebytes screen. Click the “Get started” button.
Select “Personal Computer” or “Work Computer”.
The Malwarebytes Welcome screen will first ask you what type of computer are you installing this program, click either Personal Computer or Work Computer.
Click on “Scan”.
To scan your computer with Malwarebytes, click on the “Scan” button. Malwarebytes for Mac will automatically update the antivirus database and start scanning your computer for malware.
Wait for the Malwarebytes scan to complete.
Malwarebytes will scan your computer for adware, browser hijackers, and other malicious programs. This process can take a few minutes, so we suggest you do something else and periodically check on the status of the scan to see when it is finished.
Click on “Quarantine”.
When the scan has been completed, you will be presented with a screen showing the malware infections that Malwarebytes has detected. To remove the malware that Malwarebytes has found, click on the “Quarantine” button.
Restart computer.
Malwarebytes will now remove all the malicious files that it has found. To complete the malware removal process, Malwarebytes may ask you to restart your computer.
After scanning, delete any detected threats. Your Mac should now be free from adware, unwanted extensions, and other potentially harmful software.
If your current antivirus allowed a malicious program on your computer, you might want to consider purchasing the full-featured version of Malwarebytes Anti-Malware to protect against these types of threats in the future. If you are still experiencing problems while trying to remove a malicious program from your computer, please ask for help in our Mac Malware Removal Help & Support forum.
Run a Malware Scan with Malwarebytes for Android
Malwarebytes for Android automatically detects and removes dangerous threats like malware and ransomware so you don’t have to worry about your most-used device being compromised. Aggressive detection of adware and potentially unwanted programs keeps your Android phone or tablet running smooth.
Download Malwarebytes for Android.
You can download Malwarebytes for Android by clicking the link below.
In the Google Play Store, tap “Install” to install Malwarebytes for Android on your device.
When the installation process has finished, tap “Open” to begin using Malwarebytes for Android. You can also open Malwarebytes by tapping on its icon in your phone menu or home screen.
Follow the on-screen prompts to complete the setup process
When Malwarebytes will open, you will see the Malwarebytes Setup Wizard which will guide you through a series of permissions and other setup options. This is the first of two screens that explain the difference between the Premium and Free versions. Swipe this screen to continue. Tap on “Got it” to proceed to the next step. Malwarebytes for Android will now ask for a set of permissions that are required to scan your device and protect it from malware. Tap on “Give permission” to continue. Tap on “Allow” to permit Malwarebytes to access the files on your phone.
Update database and run a scan with Malwarebytes for Android
You will now be prompted to update the Malwarebytes database and run a full system scan.
Click on “Update database” to update the Malwarebytes for Android definitions to the latest version, then click on “Run full scan” to perform a system scan.
Wait for the Malwarebytes scan to complete.
Malwarebytes will now start scanning your phone for adware and other malicious apps. This process can take a few minutes, so we suggest you do something else and periodically check on the status of the scan to see when it is finished.
Click on “Remove Selected”.
When the scan has been completed, you will be presented with a screen showing the malware infections that Malwarebytes for Android has detected. To remove the malicious apps that Malwarebytes has found, tap on the “Remove Selected” button.
Restart your phone.
Malwarebytes for Android will now remove all the malicious apps that it has found. To complete the malware removal process, Malwarebytes may ask you to restart your device.
When the scan is finished, remove all detected threats. Your Android phone should now be free of malicious apps, adware, and unwanted browser redirects.
If your current antivirus allowed a malicious app on your phone, you may want to consider purchasing the full-featured version of Malwarebytes to protect against these types of threats in the future. If you are still having problems with your phone after completing these instructions, then please follow one of the steps:
Restore your phone to factory settings by going to Settings > General management > Reset > Factory data reset.
After cleaning your device, it’s important to protect it from future infections and annoying pop-ups. We recommend installing an ad blocker such as AdGuard. AdGuard blocks malicious ads, prevents phishing attempts, and stops dangerous redirects, helping you stay safe while browsing online.
Here is an FAQ section about the “It Looks Like Someone Accessed Your Facebook Business” scam:
Frequently Asked Questions
What is the “It Looks Like Someone Accessed Your Facebook Business” scam?
This is a phishing scam where scammers send Facebook page owners a private message claiming their business account was accessed. The message contains a malicious link that steals login credentials when clicked.
How do the scammers target victims?
Scammers use fake Facebook accounts impersonating Facebook Security to send alarming private messages to page owners. The message claims their account security is at risk.
What information are the scammers after?
The main goal is to steal Facebook login credentials by directing victims to a fake Facebook login page via the phishing link. This grants them full account access.
What damage can be done if I fall for this scam?
Scammers can gain complete control of your Facebook account, including business pages. They can change details, spread scams, post offensive content and severely damage your brand.
How do I avoid falling for this Facebook scam?
Carefully inspect any messages about account security rather than blindly clicking links. Beware of phishing tactics and always visit Facebook directly via your browser if you have concerns.
What should I do if I entered my Facebook login details?
Immediately change your password, revoke unauthorized sessions, scan your devices for malware, and monitor your accounts closely for suspicious activity. Alert your contacts about potential scams.
Can I regain control of my Facebook account if it is compromised?
Yes, you can recover your account by resetting the password, removing unknown sessions, and contacting Facebook support. Act quickly to minimize damage caused by scammers.
How can I better protect my Facebook account in the future?
Enable two-factor authentication, use strong unique passwords, be wary of social engineering tactics in messages, keep software updated, and educate yourself on the latest online scams.
Who should I contact if I have other questions?
Reach out directly to Facebook Support through their Help Center if you have any additional account security questions. Report suspicious scam activity.
The Bottom Line
The “It Looks Like Someone Accessed Your Facebook Business” scam poses a severe threat to organizations and entrepreneurs using Facebook. The scheme exploits fear to steal login credentials via convincing phishing messages.
If you receive suspicious messages urging you to change your password, exercise extreme caution. Verify the sender, check for phishing links, and avoid acting in haste. Contact Facebook directly if you have any account security concerns.
For businesses, losing control of your Facebook presence to scammers can be catastrophic. Take proactive steps to lock down all social media accounts, enable two-factor authentication, and train employees on scam identification.
Stay vigilant for emerging online frauds targeting Facebook users. Protect your brand, data and operations by learning to identify and outsmart these scams. Use secure practices on all business and personal accounts.
With scams constantly evolving, awareness is the best safeguard. Share information about new scams with your network, report suspicious behavior, and notify Facebook of any imposter accounts. Working collectively, we can disrupt these fraudsters and create a more secure online environment.
Thomas is an expert at uncovering scams and providing in-depth reporting on cyber threats and online fraud. As an editor, he is dedicated to keeping readers informed on the latest developments in cybersecurity and tech.
