This paper examines a phishing campaign leveraging Facebook as a distribution channel and the domain home.com (or a typosquatted variant) as a lure. It analyzes how attackers abuse Facebook’s messaging, groups, or ads to direct users to fake login pages, harvest credentials, and evade detection. The study includes a technical breakdown of the phishing kit, social engineering tactics, and recommendations for platforms and users.