Phishing
Attackers can upload malicious files documents on Facebook Messenger and share the direct download link with users. Since the file types are heavily restricted by Facebook, this is only useful for sharing documents such as PDF, DOC, XLS etc.