{"id":177819,"date":"2026-01-14T03:15:06","date_gmt":"2026-01-14T08:15:06","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/14\/facebook-login-thieves-now-using-browser-in-browser-trick\/"},"modified":"2026-01-14T03:15:09","modified_gmt":"2026-01-14T08:15:09","slug":"facebook-login-thieves-now-using-browser-in-browser-trick","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/14\/facebook-login-thieves-now-using-browser-in-browser-trick\/","title":{"rendered":"Facebook login thieves now using browser-in-browser trick"},"content":{"rendered":"<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/facebook-login-thieves-now-using-browser-in-browser-trick\/\">Facebook login thieves now using browser-in-browser trick<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/facebook-login-thieves-now-using-browser-in-browser-trick\/\">https:\/\/www.bleepingcomputer.com\/news\/security\/facebook-login-thieves-now-using-browser-in-browser-trick\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-01-12 16:05:43<\/a><\/p>\n<p>Source Domain: <a href=\"www.bleepingcomputer.com\">www.bleepingcomputer.com<\/a><\/p>\n<p><strong>Summary:<\/strong><\/p>\n<p>In the past six months, hackers have increasingly adopted the browser-in-the-browser (BitB) technique for phishing attacks, particularly targeting Facebook users. Developed in 2022 by mr.d0x, the BitB method involves displaying fake browser pop-ups that mimic legitimate login forms upon visiting attacker-controlled webpages. This phishing approach is designed to steal credentials, spread scams, and commit identity fraud. To bolster the deception, attackers employ legitimate cloud platforms like Netlify and Vercel for phishing page hosting alongside shortened URLs and fake CAPTCHA pages. Threat actors are leveraging law firm impersonations and official-looking security alerts from Meta. Trellix, which monitors these malicious activities, emphasizes that BitB phishing represents a significant evolution by using trusted, legitimate infrastructure to bypass security filters, making the attack method harder to detect visually. To safeguard oneself, users should avoid clicking on links in emails and instead check for the ability to move out of the browser window when entering credentials in pop-up windows. Enabling two-factor authentication is also recommended to provide an additional security layer.<\/p>\n<p><strong>Key Points:<\/strong><\/p>\n<ul>\n<li>Hackers are increasingly using the browser-in-the-browser (BitB) phishing technique to steal Facebook credentials.<\/li>\n<li>This attack leverages fake browser pop-ups on attacker-controlled webpages mimicking legitimate login forms.<\/li>\n<li>Attackers use legitimate cloud platforms and services to host phishing pages, making detection harder.<\/li>\n<li>Trellix highlights that BitB is a significant advancement, as it creates a custom login pop-up within the browser, making credential theft largely unvisually detectable.<\/li>\n<li>Users should avoid following links in suspicious emails and always ensure credentials are entered into windows that can move outside the browser to avoid BitB phishing attempts.<\/li>\n<\/ul>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Facebook login thieves now using browser-in-browser trick https:\/\/www.bleepingcomputer.com\/news\/security\/facebook-login-thieves-now-using-browser-in-browser-trick\/ Publish Date: 2026-01-12 16:05:43 Source Domain: www.bleepingcomputer.com&#8230;<\/p>\n","protected":false},"author":1,"featured_media":177820,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.bleepstatic.com\/content\/hl-images\/2022\/07\/25\/facebook-fiber.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[25],"class_list":["post-177819","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-phishing"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/177819"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=177819"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/177819\/revisions"}],"predecessor-version":[{"id":177821,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/177819\/revisions\/177821"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/177820"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=177819"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=177819"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=177819"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}