Sniper Dz Scams Hit MENA via Fake Facebook Offers

Michael Miller · 2026-06-15

Cybersecurity researchers have uncovered a wave of fraudulent activity targeting users across the Middle East and North Africa. The scammers are using fake Facebook accounts that impersonate politicians, public figures, and trusted organizations. These accounts push phony offers, like free mobile internet packages, financial compensation, and government subsidy programs. Group-IB first reported the campaign, which they've dubbed "Sniper Dz." It's a classic bait-and-switch, but with a modern twist. The scammers don't just stop at Facebook. They lure victims into clicking links that lead to fake browser alerts. These alerts claim your device is infected or your account is compromised. Then, they push you to download malware or hand over sensitive info. It's a dangerous game, and many are falling for it. ### How the Scam Works The operation is surprisingly simple. First, scammers create fake Facebook profiles that look legit. They might use a stolen photo of a local politician or a logo from a well-known charity. Then, they post offers that seem too good to be true—like free data plans or cash payouts. When you click, you're taken to a page that mimics a browser warning. That's where the trouble starts. - **Fake Offers**: Promises of free internet, money, or aid. - **Impersonation**: Accounts that look like real people or groups. - **Browser Alerts**: Pop-ups that claim your device is at risk. - **Malware Delivery**: Links that download spyware or steal data. These steps are carefully designed to build trust and then exploit it. The scammers know that people are more likely to click when the offer seems official. That's why they target high-trust sources like government programs or known charities. ### Why It Matters for US Users While this campaign is focused on the MENA region, it's a wake-up call for everyone. Scams like these can easily spread globally. If you're using antidetect browsers or managing multiple accounts, you're a prime target. The same tactics could be used to trick you into revealing login credentials or downloading malicious software. Staying safe means being skeptical of any unsolicited offer, no matter how real it looks. Always verify the source before clicking. And if a browser alert pops up out of nowhere, don't engage—close the tab and run a security check. ### Protecting Yourself from Browser-Based Scams So, what can you do to stay ahead of these threats? Here are a few practical steps: - **Use a Secure Browser**: Stick with browsers that have built-in phishing protection. - **Enable Two-Factor Authentication**: This adds an extra layer of security to your accounts. - **Avoid Clicking Random Links**: If it feels off, it probably is. - **Keep Software Updated**: Patches fix vulnerabilities that scammers exploit. For professionals relying on antidetect browsers, the stakes are even higher. These tools help manage multiple identities, but they also attract attention from scammers. Always download antidetect browsers from official sources, and never trust third-party offers that promise free upgrades or bonuses. ### The Bottom Line The Sniper Dz campaign is a reminder that scammers are always evolving. They're using social media and fake browser alerts to trick people into giving up their data. By staying informed and cautious, you can avoid becoming a victim. Remember, if an offer seems too good to be true, it probably is. Stay safe out there.