Google AppSheet abused to compromise 30,000 Facebook accounts

📅 29 April 2026 at 18:11 UTC📰 Cyber InsiderView original source ↗

A large-scale phishing operation abusing Google’s AppSheet platform has compromised at least 30,000 Facebook accounts, using fully authenticated emails that bypass traditional security checks. Guardio Labs uncovered the campaign while investigating a wave of phishing emails sent through Google’s AppSheet notification system. Unlike conventional phishing, these messages were delivered via legitimate Google infrastructure, specifically noreply@appsheet.com … The post Google AppSheet abused to compromise 30,000 Facebook accounts appeared first on CyberInsider.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

A large-scale phishing operation abusing Google's AppSheet platform compromised at least 30,000 Facebook accounts using fully authenticated emails that bypass traditional security checks. The attackers used a range of platforms and tactics to hijack high-value Facebook accounts.

⚙️Technical Details

Affected Systems

Google AppSheetNetlifyVercelGoogle Drive

Attack Vectors

Legitimate Google infrastructureFake Facebook Help Center pages hosted on NetlifyIncentives offered via Vercel-hosted phishing pagesGoogle Drive-hosted PDFs with embedded links to interactive phishing panelsImpersonating recruiters from major brands

💥Impact Assessment

Severity: High

Who Is at Risk

Facebook Business users and potentially other individuals who interact with the compromised accounts

🛡️Recommended Actions

1Avoid clicking links in 'urgent' emails

2Enable two-factor authentication for Facebook accounts

3Monitor account activity for signs of compromise

📦Affected Products

Facebook

Read the full article

This is a curated summary. The complete article is available at Cyber Insider.

Read on Cyber Insider ↗

← Back to feed