Facebook’s platform and security certificates are being used against it in phishing campaigns designed to dupe users into handing over their account credentials. Cybercriminals are abusing the Facebook application platform to carry out phishing campaigns against users which appear legitimate thanks to the fraudulent use of Facebook’s own Transport Layer Security (TLS) security certificates, a protocol used to help keep domains and user communication secure.
View full story
ORIGINAL SOURCE: ZDNet