NEWYou can now listen to Fox News articles!
cry
You may already know that Facebook’s greatest strength is not the social media platform itself, but the data of the users it collects.
The data we put back without thinking about twice is that this company of several billion dollars uses to generate income. He sells this data to advertisers, who then try to earn money by broadcasting announcements in the hope that you will buy their products. I admit, sometimes, the advertising platform can be beneficial by connecting small businesses to potential buyers.
However, as Facebook allows almost anyone to advertise with minimum moderation, this often leads to dangerous scams. Security researchers have discovered that a persistent malvertization campaign Facebook afflict, taking advantage of the reputation of cryptocurrency exchanges well known to attract victims to a malaware maze.
16 billion passwords disclosed in a massive data violation
An iPhone with the Facebook connection screen. (Kurt “Cyberguy” KTUSSON)
How does the scam of Facebook cryptography work
Bitdefender Labs reports that a malicious advertising campaign has been working on Facebook for several months. The attackers use deceptive advertisements that imitate popular cryptocurrency brands like Binance, TradingView, Bybit and Metamask. To make the scams legitimate, advertisements often have familiar faces such as Elon Musk, Cristiano Ronaldo or Zendaya.
When users click on the announcements, they land on false websites that seem almost identical to the real ones. These sites encourage visitors to download a so-called “office client”. This download serves as an input point for a sophisticated malware system.
What is artificial intelligence (AI)?
Instead of delivering malware directly, the false site launches a silent server on the victim’s device. This server then connects to a main channel to receive malicious instructions. The method makes more difficult for traditional safety tools to detect attack.
To avoid exposure, attackers also use advanced filtering and monitoring tools. If a user does not arrive through specific Facebook announcements, the website can instead display harmless content. The site also checks automated tools or sandbox environments designed to take threats. In some cases, it even blocks access unless the user opens it in Microsoft Edge, showing virgin pages in other browsers.
Screenshot showing a malicious facebook ad. (Bitdefender)
How pirates use false Facebook pages to spread malware
Bitdefender researchers found hundreds of Facebook accounts involved in the promotion of the campaign, sometimes publishing more than 100 ads in a single day. Although many of these announcements are shot down quickly, they often accumulate thousands of views before disappearing.
Get Fox Affairs on the move by clicking here
A Facebook page has perfectly imitated the official tradingView account, including false comments, publications and images, with the exception of the redirection links that led to the malicious clone. The targeted victims tended to be men interested in technology and finance, and certain advertisements specifically perfected with users in Bulgaria and Slovakia, showing how attackers refine their campaigns according to geography and demography.
An iPhone with the Facebook connection screen.
6 ways to avoid malware scams Crypto Facebook
As this Facebook scam shows, cybercriminals become more creative and more convincing day by day. These tips can help you keep one step ahead.
1. Do not trust advertisements simply because they seem familiar
The crooks have become masters of visual deception. They reproduce the brand image, use celebrity mentions and imitate the official pages to give their ads an air of legitimacy. In the Facebook Malvertling campaign, the attackers used names like Binance and Face like Elon Musk to gain confidence instantly. Instead of clicking on advertisements, it is safer to visit the company’s official website directly by typing the URL yourself. Take a moment to check with official social media accounts or customer service if you are never sure of the authenticity of an ad.
2. Avoid downloads from advertising links and install strong antivirus software
In these attacks, users were brought to download what seemed to be office applications for trust services, but were in fact malware installers. The best way to protect yourself from malware that install malware, potentially accessing your private information, is to install solid antivirus software on all your devices. This protection can also alert you to phishing emails and ransomware scams, protecting your personal information and digital assets.
Get my choices for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices Cyberguy.com/lockupyourtech.
3. Keep your browser up to date
Interestingly, the attackers of this campaign used browser filtering to avoid detection, which encourages users to reopen the site specifically in Microsoft Edge. The use of a secure browser like Firefox or Brave can help, and keep it up to date guarantees that you are protected against the latest threats. Tools such as content blockers or script filters can also help stop malware before it starts.
4. Pay attention to the subtle red flags
Even the most convincing false websites have often said, whether it is a slightly out of brand URL, a layout or a strange messaging that feels rushed or generic. A secure URL must start with “https: //” and match the official domain name. If a site urges you to act quickly, promises high yields or requests personal information in advance, take a step back. These emotional pressure tactics are a characteristic of modern scams.
5. Add two factors (2FA) to lock your accounts
Two -factor authentication (2fa) Can provide an additional safety layer in case your accounts are compromised. Even if you accidentally fall into a scam and your connection identification information is stolen, 2FA makes more difficult for attackers to access your account without the second verification stage.
6. Use a data deletion service
Although no service promises to delete all your Internet data, using a personal data deletion service can reduce your risk of being targeted in the first place. These services constantly scan the data broker sites and request withdrawals on your behalf, helping to keep your contact details, your location history and your interests outside the advertisers and crooks potentially. Since this campaign has exploited Facebook data to target users interested in cryptography and technology, the less the data available on you online, the more difficult for attackers to personalize their scams.
Consult my best choices for data deletion services and get a free analysis to find out if your personal information is already on the web by visiting Cyberguy.com/delete.
Get a free scan to find out if your personal information is already on the web: Cyberguy.com/freescan.
Click here to obtain the Fox News app
Kurt de Kurt to remember
Facebook’s incapacity to brake Malvertling does not only put users in danger. He undermines the whole point of his announcement platform. If people start to associate Facebook advertisements with malware and malware, they will stop clicking. And when this happens, advertisers lose money on impressions that are not going, eroding confidence in the capacity of the platform to provide a real and safe commitment. For a company that is based so strongly on advertising revenues, let these threats do not pass without worry. It is self -destructive. If Facebook does not understand this, users and advertisers will eventually look elsewhere.
Do you think that social media platforms are doing enough to fight against online scams? Let us know by writing to Cyberguy.com/Contact.
Register for my free cyberguy report
Get my best technological advice, my urgent safety alerts and my exclusive offers delivered directly in your reception box. In addition, you will have instant access to my survival guide at the ultimate – free swindle when you join my Cyberguy.com/Newsletter.
Copyright 2025 cyberguy.com. All rights reserved.
