A recently uncovered phishing campaign, codenamed AccountDumpling by Guardio, has revealed a sophisticated operation tied to Vietnam that exploits Google AppSheet as a phishing relay. This method involves sending phishing emails designed to trick users into revealing their Facebook account credentials. The attackers have reportedly been selling the compromised accounts through an illicit online storefront, raising concerns about the scale and impact of this operation, which has already affected approximately 30,000 Facebook users.
For businesses, this incident underscores the critical importance of robust cybersecurity measures, particularly in the face of increasingly creative phishing tactics. Organizations must prioritize employee training on recognizing phishing attempts and implement advanced security solutions, such as multi-factor authentication, to protect against unauthorized access. This situation serves as a stark reminder of the evolving threat landscape in cybersecurity, where attackers leverage legitimate platforms to facilitate their schemes, making it imperative for businesses to remain vigilant and proactive in safeguarding their digital assets.
---
*Originally reported by [The Hacker News](https://thehackernews.com/2026/05/30000-facebook-accounts-hacked-via.html)*