Deepfake Meta Business Suite Credential Scam
Scammers use AI-generated video of Meta or Facebook representatives to impersonate partner managers on fake calls, convincing ad account managers to hand over Business Suite credentials.
Part of: Deepfake Video Call Scams
Last reviewed: 8 June 2026
Meta's Business Suite is used by millions of companies to manage Facebook and Instagram advertising. Because ad accounts are tied to real payment methods and can spend thousands of dollars per day, they are a high-value target for account takeover.
Attackers have begun supplementing traditional phishing with deepfake video messages that appear to come from Meta leadership or 'Partner Manager' representatives. The video shows a convincing likeness of a known Meta figure explaining that the business account is at risk or has violated a policy, then directing the viewer to a specific link to resolve the issue.
The link leads to a credential-harvesting page styled to look like Meta Business Suite's login. Once attackers have the credentials, they drain the ad budget by running their own campaigns or selling the account access on underground markets.
How this scam works on the Meta/Facebook brand
Meta communicates with business account holders through notifications within Business Suite, the Meta Business Help Center, and occasionally by email from @meta.com or @facebookmail.com addresses. Meta does not send unsolicited video messages from individual named employees via Messenger, WhatsApp, or external email.
The attack begins with an email or a Messenger message containing a link to a video file or an embedded player. The deepfake video shows a person resembling a Meta executive or the recipient's supposed 'assigned partner manager' explaining that the account requires immediate verification due to a suspicious payment or policy flag.
After viewing the video, the recipient is prompted to sign in via a link to secure their account. The sign-in page captures two-factor codes by forwarding the victim's session in real time, allowing attackers to take over the session before any cookie expires.
Common red flags
- An unsolicited Messenger or email message includes a video from a named Meta employee you cannot verify through official channels.
- The video shows a known public figure but the lip sync or background lighting seems slightly off.
- You are directed to click a link outside of Business Suite itself to resolve an account issue.
- The sign-in page URL is not business.facebook.com or meta.com.
- The message creates urgency: 'Your ad account will be permanently suspended in 48 hours.'
- The 'Meta employee' asks for your two-factor authentication code over phone or chat.
How to protect yourself
- Manage all Meta Business Suite issues directly within business.facebook.com — never via an external link sent to you.
- Enable two-factor authentication on your Meta account using an authenticator app rather than SMS.
- Use Meta's Business Suite notification centre as the only trusted source for account-status alerts.
- Add multiple trusted people as Business Suite admins so no single account takeover disables your access.
- If you receive a suspicious video, share it with your IT team before taking any action the video requests.
- Limit which team members have payment admin roles in Business Suite to reduce the blast radius of a compromise.
How to report it
- Report hacked or suspicious business accounts at facebook.com/hacked or through Meta's Business Help Center.
- Forward suspicious emails purportedly from Meta to [email protected].
- Report ad account fraud to the FTC at ReportFraud.ftc.gov (US) or Action Fraud at actionfraud.police.uk (UK).
- If your ad account was used to make unauthorised charges, contact your bank to dispute the transactions.
Frequently asked questions
Does Meta ever contact business account owners via personal video message?
No. Meta communicates through Business Suite notifications, the Help Center, and verified email addresses ending in @meta.com or @facebookmail.com. Individual video messages purportedly from Meta staff are a social engineering tactic.
How do I verify whether a Meta employee reaching out to me is genuine?
Request that any official communication be replicated inside Business Suite's support ticket system. You can also start a new conversation through Meta's own Business Help Center to verify independently.
Can I recover a hacked Meta Business Suite account?
Yes. Go to facebook.com/hacked and follow the account recovery steps. If ad spend was made fraudulently, raise a dispute with Meta through the Billing and Payments section of Business Suite.