A new phishing attack is using Facebook Messenger chatbots to impersonate the company's support team to steal credentials for managers of Facebook pages. Chatbots in Messenger The attack starts with an email informing that the Facebook page has violated Community Standards, giving 48 hours to appeal the decision, or the page will be deleted. The user is offered a chance to resolve the problem in Facebook’s Support center. To access it, they have to click on an “Appeal Now” button. Clicking the button takes the victim to a Messenger conversation where a chatbot impersonates a Facebook customer support agent.