Misleading Deepfake Video of Trump Mocki…

BackAttackers Reportedly Deployed Simulated AI Support Chatbot to Trick Instagram Business Users into Adding Malicious 2FA Login

Attackers Reportedly Deployed Simulated AI Support Chatbot to Trick Instagram Business Users into Adding Malicious 2FA Login

Mar 12, 20252 reportsSeverity: MinorToolMedium confidence

A phishing campaign used fake Meta/Instagram business account suspension emails to trick users into providing credentials through fake chat support and detailed instructions, ultimately hijacking business accounts by adding attackers as secure login methods.

The Cofense Phishing Defense Center discovered a sophisticated phishing campaign targeting Meta Business accounts, particularly Instagram users. The campaign begins with fake emails claiming advertising restrictions and account suspension due to policy violations, appearing to come from Instagram support but actually originating from Salesforce addresses. Victims clicking 'Check more Details' are redirected to fraudulent pages on domains like businesshelp-manager.com that closely mimic legitimate Meta Business pages. The attackers employ two primary methods: a fake chat support system that requests business account screenshots and personal information, and detailed step-by-step guides for adding Two-Factor Authentication. Both methods ultimately trick users into adding the attacker's authenticator app named 'SYSTEM CHECK' as a secure login method, giving threat actors persistent access to hijacked business accounts. The campaign demonstrates high attention to detail with convincing emails, landing pages, live chat support, and even video instructions to maximize deception effectiveness.

Domain classification, causal taxonomy, severity scores, and national security assessments were LLM-classified and may contain errors.

Risk Domain

4Malicious Actors & Misuse

4.3Fraud, scams, and targeted manipulation

Using AI systems to gain a personal advantage over others such as through cheating, fraud, scams, blackmail or targeted manipulation of beliefs or behavior. Examples include AI-facilitated plagiarism for research or education, impersonating a trusted or fake individual for illegitimate financial benefit, or creating humiliating or sexual imagery.

Causal Classification

Entity

Human

Due to a decision or action made by humans

Intent

Intentional

Due to an expected outcome from pursuing a goal

Timing

Post-deployment

Occurring after the AI model has been trained and deployed

Harm Severity Assessment

Highest Score:2 — Minor(Toxic or Malicious Content, direct)

National Security Assessment

Overall Score(2/5)

Stakeholders

Developers: Unknown Generative AI Developers
Deployers: Scammers Impersonating Meta Support, Scammers, Phishers, Fraudsters
Harmed Parties: Meta Users, Instagram Users, Instagram Business Users

AI System Classification

Primary Purpose: Fraud, scams, and targeted manipulation
Behaviour Type: Tool
EU AI Act Risk Level: 4 Minimal or No Risk
Occurrences: 1

Population Impact

No population impact data reported.

External Links

View on AI Incident Database