A new phishing campaign is targeting TikTok for Business accounts using adversary-in-the-middle (AitM) techniques, according to Push Security researchers. The attacks specifically target business accounts on the social media platform, which represent high-value targets due to their potential for monetization through malicious advertising campaigns.
Business accounts associated with social media platforms are particularly lucrative targets for threat actors, as compromised accounts can be weaponized for malvertising operations and malware distribution. The attackers are leveraging the trusted nature and established audiences of legitimate business accounts to amplify their malicious activities.