Every week, it seems there’s a new scam making the rounds on Facebook — and law firms and small businesses are increasingly being targeted. One of the latest? A phishing scam that appears to come from Facebook Support, claiming your account is scheduled for deletion due to a policy violation.
At Big Voodoo, we’re seeing more of these threats hit our clients’ inboxes and business pages, and we want to keep you informed so you don’t fall into the trap.
The “Scheduled for Deletion” Scam
One recent scam that’s been making waves involves a message or comment from what looks like the Facebook Support Team. It says something like:
“Your page has been scheduled for deletion due to a violation of Facebook’s Community Standards.”
The message often includes a link urging you to appeal the decision or verify your identity. The link takes you to a fake Facebook login page that’s designed to steal your credentials — and once that happens, your business page, ad account, and payment info could all be compromised.
Other Common Facebook Scams to Watch For
1. Copyright Violation Scams
You may receive a message claiming you’ve used copyrighted content and need to fill out a form to avoid legal action. These are also phishing attacks aimed at stealing your login credentials.
2. Ad Account Hacking
Hackers target admins of business accounts and run unauthorized ads — often spending thousands before you can stop it. This can happen if your account is compromised by phishing or if 2FA (two-factor authentication) isn’t set up.
3. Fake Verification Requests
You might be invited to apply for a “Verified” badge or offered support to help you “avoid losing your page.” These are almost always scams.
4. Fake Facebook “Security” Teams
Scammers create fake profiles that look like Meta’s trust and security staff and reach out to you via DM or comments, pressuring you to take action to avoid losing your account.
How to Protect Your Law Firm’s Facebook Page
- Never click suspicious links. Always hover over the URL to check if it leads to facebook.com — and remember, Meta never contacts users through DMs.
- Enable two-factor authentication (2FA) on all admin accounts.
- Review your Page Roles regularly to ensure only trusted users have access.
- Bookmark the official Facebook Help Center and use that to verify claims: https://www.facebook.com/help
Bottom Line: Be Skeptical, Stay Secure
Cybercriminals are constantly evolving their tactics, and Facebook remains a popular target. If something feels off — even if it looks official — pause, verify, and don’t give away your credentials.
Have questions about keeping your law firm’s digital presence secure? Big Voodoo is here to help.