TikTok Business phishing campaign uses bot checks to sidestep analysis - Bitdefender

INDUSTRY NEWS SCAM 2 min read TikTok Business phishing campaign uses bot checks to sidestep analysis Vlad CONSTANTINESCU March 27, 2026 Promo Protect all your devices, without slowing them down. Free 30-day trial Attackers are using evasive phishing infrastructure to hijack TikTok for Business accounts and, in some cases, linked Google logins. A high-value target for cybercriminals Security researchers are tracking a phishing campaign aimed at the TikTok for Business niche, a niche target valued because compromised advertiser accounts can be used for malvertising, ad fraud, and the spread of malicious content at scale. Push Security says the activity resembles a campaign it documented in late 2025 that went after Google ad-related accounts, suggesting threat actors are refining a proven playbook rather than inventing a new one from scratch. Much like aged Instagram accounts, business-facing TikTok accounts carry more reach and credibility than ordinary profiles. A stolen account can become an instant launchpad for scam ads, fraudulent promotions or malicious redirects. Evasion built into the phishing chain According to campaign reporting, the attack chain uses a legitimate Google Storage URL as part of the redirect flow before presenting a Cloudflare Turnstile check designed to frustrate automated analysis. The phishing domains were reportedly registered on March 24, 2026 and the pages impersonate TikTok for Business and Google Careers scheduling flows to avoid suspicion. In recent phishing scenarios, attackers increasingly hide behind trusted cloud infrastructure and anti-bot mechanisms to keep scanners, sandboxes and researchers from detecting the payload immediately. Why 2FA may not be enough The greatest danger is the use of an adversary-in-the-middle, or AiTM, phishing setup. Because the fake page acts as a live proxy between victim and legitimate service, it can capture credentials and session cookies in real time, allowing account takeover even when traditional two-factor authentication (2FA) is enabled. Security researchers also warned that users who sign in to TikTok with Google SSO (single sign-on) could effectively hand over access to both ecosystems in one hit. The safest advice remains to distrust unsolicited invites, inspect domains carefully and move high-value accounts to phishing-resistant authentication where possible. Added protection is crucial Users worried about fake TikTok for Business invites can add a simple verification step before clicking or logging in. Bitdefender Scamio can help assess suspicious messages, links, screenshots or email text, making it easier to spot a phishing attempt before credentials are exposed. For broader protection, Bitdefender Ultimate Security adds an extra layer of security by helping block malicious links and detect suspicious activity on the device. In phishing campaigns designed to steal access to business accounts, that extra protection can make the difference between safety and complete account takeovers. TAGS industry news scam AUTHOR Vlad CONSTANTINESCU Vlad's love for technology and writing created rich soil for his interest in cybersecurity to sprout into a full-on passion. Before becoming a Security Analyst, he covered tech and security topics. View all posts RIGHT NOW TOP POSTS INDUSTRY NEWS SCAM Scam Centers Are Feeling the Heat – INTERPOL Makes 201 Arrests in the MENA Region May 19, 2026 5 min read INDUSTRY NEWS SCAM Football ticket scams are rising fast, Lloyds Bank warns May 14, 2026 3 min read INDUSTRY NEWS MOBILE SECURITY iPhone-to-Android Texts Are Finally Encrypted – Here’s What That Means for You May 13, 2026 4 min read THREATS ClickFix: When the victims help the hackers May 11, 2026 6 min read FOLLOW US ON SOCIAL MEDIA YOU MIGHT ALSO LIKE INDUSTRY NEWS SCAM Telecom Executives Plead Guilty to Tech Support Fraud Filip TRUȚĂ May 26, 2026 4 min read INDUSTRY NEWS FBI warns of Kali365 phishing kit that breaks into Microsoft 365 accounts — no password required Graham CLULEY May 26, 2026 3 min read INDUSTRY NEWS DATA BREACH 7-Eleven data breach exposes data of 185,000 people Vlad CONSTANTINESCU May 26, 2026 1 min read BOOKMARKS You have no bookmarks yet. Tap to read it later.