Cybercriminals have launched a new phishing campaign that uses Facebook’s brand. Fraudsters mislead Facebook users by tricking them into opening an alleged updated privacy policy.

The potential victims are intimidated by a warning that unless they accept updated policy, their account will be suspended and then irrevocably deleted.

According to CERT Poland, the goal of the fake emails is to download Anubis malware to android. After installation, cybercriminals have full access to contacts, text messages, saved payment details and make phone calls on the infected device.