The Meta 2FA Trap: From Verified Badge to Account Takeover

Cofense PDC details an active phishing campaign impersonating Meta Verified that lures users via a Gmail-based message to a Google Form and then to vercel.app-hosted landing pages which harvest credentials and live 2FA tokens for near-real-time account takeover; the report includes observed phishing and payload URLs and IPs as IOCs.