By stealing session cookies, hackers gained unauthorized access to user accounts without needing login credentials. These stolen cookies also bypassed multi-factor authentication measures, making them a valuable asset for identity theft criminals. Once inside the compromised accounts, the attackers sought out Facebook profiles capable of running advertising campaigns. They then used these accounts to disseminate misinformation and direct unsuspecting users to websites hosting additional malware.
