A sophisticated fraud operation dubbed Sniper Dz has been running deceptive Facebook campaigns across the Middle East and North Africa, according to security researchers tracking the scheme. The operation uses fake promotional offers and browser-based alerts to lure users into handing over personal data or financial information, researchers at multiple cybersecurity firms confirmed this week.
The Anatomy of the Scam
The Sniper Dz campaign operates by creating fraudulent Facebook pages that mimic legitimate brands and retail outlets popular across MENA markets. These pages distribute fake discount codes and promotional offers that appear on users' browsers as push notifications. When users click through, they are redirected to phishing websites designed to harvest login credentials and payment card details.
Researchers identified the operation as using a network of at least 200 Facebook pages that cycling through different brand names to evade detection. The pages typically post during peak shopping hours in the Gulf region, when consumer activity on the platform is highest.
How Facebook Became the Attack Vector
Facebook's advertising platform has become an attractive route for fraudsters precisely because it offers built-in targeting capabilities. Sniper Dz operators created business accounts and used Facebook's ad targeting tools to focus their fraudulent content on users in Saudi Arabia, Egypt, and the UAE. The platform's trust mechanisms, including blue checkmarks for verified business pages, gave their schemes an appearance of legitimacy.
Meta, Facebook's parent company, operates in a complex regulatory environment across MENA. The platform has over 200 million monthly active users in the Middle East and North Africa, making it a critical marketing channel for businesses ranging from local retailers to international brands.
Financial Toll on Victims
The economic damage extends beyond individual users. Regional cybersecurity firm Group-IB documented cases where victims lost an average of 450 dollars per incident. Some users reported having their entire payment card limits exhausted before discovering the fraud. The company estimates the total financial impact across MENA could reach millions of dollars annually, though the full scope remains difficult to quantify.
Businesses face separate costs. Retailers whose brands are impersonated in these campaigns report customer service burdens as confused consumers contact them directly about fake promotions. Some affected brands have had to issue public warnings and run verification campaigns to protect their reputations.
Impact on Digital Advertising Trust
For advertisers, the scam raises questions about the integrity of Facebook's advertising ecosystem. Companies running legitimate promotional campaigns on the platform find themselves competing for attention alongside fraudulent content that mimics their offers. Marketing executives in Dubai and Riyadh told local media they are demanding stronger verification processes from Facebook before committing advertising budgets.
The incident arrives at a sensitive moment for Meta's advertising business in the region. Major brands have been increasing digital marketing spend across MENA markets as e-commerce continues expanding. Any erosion of trust in platform advertising could reshape how companies allocate their marketing budgets.
Regulatory Response Taking Shape
Authorities across the region are beginning to respond. The UAE's Telecommunications Regulatory Authority issued guidance to consumers about browser notification scams last month. Egypt's consumer protection agency has been collecting victim reports and coordinating with social media platforms on takedown requests.
Saudi Arabia's cybersecurity authority recently published best practices for identifying fraudulent social media promotions. The kingdom has been particularly aggressive in pushing digital platform accountability as part of its broader economic diversification agenda.
International Coordination Gaps
Cross-border enforcement remains problematic. The servers hosting phishing websites are often located in jurisdictions with limited cooperation on cybercrime matters. Facebook's content moderation teams face challenges reviewing reports quickly enough to prevent scams from spreading during their most active periods.
What Comes Next
Facebook has removed the identified pages and domains associated with Sniper Dz, according to a company spokesperson. The platform announced plans to introduce additional verification requirements for business accounts running promotional content in the Gulf region. Implementation is expected to begin within the next quarter, though specific timelines have not been disclosed.
Cybersecurity researchers continue monitoring for new iterations of the scam. They warn that the operators have demonstrated adaptability, quickly registering new domains and creating fresh Facebook pages when old ones are shut down. Users across MENA should verify promotional offers directly through brand websites rather than clicking links in social media posts or browser notifications.
Advertisers and platform regulators will be watching closely to see whether Meta's promised safeguards can stem the flow of fraudulent content before the next major shopping season arrives in the region.
See Also
- Atleti Simeone Halts Key Transfer Deals — Market Reactions Emerge
- Telangana Opposition Slams Globarena Technologies Over 2019 Exam Controversy
