anavem.
HighVulnerability

Facebook Credential Theft Surges With "Browser-in-Browser" Popups That Hide Phishing URLs in Plain Sight

Facebook credential theft is being amplified by Browser-in-Browser (BitB) phishing, which renders fake login popups with convincing Facebook URLs inside the page itself. The technique defeats visual inspection and increases account takeover success rates.

Evan Mael
Evan MaelJan 14, 2026
Consumer10views

Incident Summary

Type
Vulnerability
Severity
High
Industry
Consumer
Threat Actor
Unspecified actors using phishing infrastructure (observed by Trellix)
Target
Facebook users (especially page admins, business accounts, and users likely to act on "account enforcement" emails)
Published
Jan 14, 2026

Comments

Want to join the discussion?

Create an account to unlock exclusive member content, save your favorite articles, and join our community of IT professionals.

Sign in

Related Incidents

View All
1Password Introduces Pop-up Warnings for Suspected Phishing Sites
Medium

1Password Introduces Pop-up Warnings for Suspected Phishing Sites

1Password adds pop-up warnings to protect users from suspected phishing sites, enhancing its digital vault and password...

Read More
Phishing Attack Uses Stolen Credentials to Deploy LogMeIn RMM
High

Phishing Attack Uses Stolen Credentials to Deploy LogMeIn RMM

A new phishing attack uses stolen credentials to deploy LogMeIn RMM for persistent access to compromised hosts.

Read More
Sandworm's DynoWiper Malware Targets Polish Power Sector
Critical

Sandworm's DynoWiper Malware Targets Polish Power Sector

Sandworm's DynoWiper malware targets Polish power sector in attempted cyber attack

Read More
Konni Hackers Target Blockchain Engineers With AI Generated PowerShell Malware and OneDrive Themed Persistence
High

Konni Hackers Target Blockchain Engineers With AI Generated PowerShell Malware and OneDrive Themed Persistence

Blockchain engineering teams are now being targeted with a blend of old tradecraft and a new productivity multiplier: an...

Read More