Cyber attackers are using a phishing campaign to target business accounts associated with Meta (Facebook), impersonating the Facebook Ads Team to deceive users into clicking a malicious link that leads to a fake webpage designed to steal sensitive account information, utilizing email subjects like policy violations and account deletion, sophisticated social engineering tactics, and exploiting weaknesses in multi-factor authentication to compromise the user's account, while utilizing tools and infrastructure for automated phishing attacks and translating redirects with financial motives towards further attacks on compromised business ad accounts.
https://cybersecuritynews.com/facebook-ad-phishing-attack/