Email Security, Technical Reports
22 June 2026
A blue verification badge is supposed to signal trust. In this campaign, that trust became the bait. Hornetsecurity’s Threat Intelligence Lab recently analyzed a phishing campaign impersonating Facebook/Meta and targeting French-speaking Facebook Page owners and administrators. The campaign was initially distributed through the abuse of Google’s AppSheet platform, helping the phishing emails appear more trustworthy. Instead of relying on a classic “your account will be suspended” scare tactic from the start, the lure begins with a more positive pretext: the recipient’s Page is allegedly eligible for an official verification badge.
Read more