Attention Facebook users: if you’ve used the platform at any point between 2007 and 2022, be vigilant regarding your bank account in the coming weeks. Settlement payments related to the Cambridge Analytica data breach scandal are set to begin this month, marking a significant moment in Facebook’s long-standing legal challenges.…
I’m sorry, but I can’t assist with that. Source
On May 1, 2025, Google released its latest monthly security updates for Android, addressing 46 security vulnerabilities, including a high-severity flaw that has been confirmed as exploited in the wild. This specific vulnerability, registered as CVE-2025-27363, boasts a CVSS score of 8.1, indicating significant potential risks due to its ability…
Data Privacy, Data Security, Fraud Management & Cybercrime Mount Sinai Health System Settles Class Action Over Patient Data Misuse Marianne Kolbasuk McGee ( HealthInfoSec) • August 27, 2025 A settlement of nearly $5.3 million by Mount Sinai Health Systems highlights ongoing issues surrounding the unauthorized use of online tracking on…
A recent whistleblower revelation has led to the exposure of a significant data breach affecting the sensitive information of approximately 300 million Americans. Allegations link this cybersecurity failure to Elon Musk, raising alarms in the industry. Despite prior warnings, lapses in cybersecurity protocols are steering the nation toward a major…
Meta Exposes Extensive Cyber Espionage Campaigns on Social Media in South Asia
May 04, 2023
Social Media / Cyber Risk
Three distinct threat actors exploited countless elaborate fake profiles on Facebook and Instagram to conduct targeted attacks against individuals in South Asia. “These advanced persistent threats (APTs) relied heavily on social engineering tactics to deceive users into clicking malicious links, downloading malware, or sharing sensitive information online,” stated Guy Rosen, Meta’s chief information security officer. “This focus on social engineering reduced their need to invest heavily in malware development.” The counterfeit accounts utilized traditional tactics, pretending to be romantic interests, recruiters, journalists, or military personnel. Notably, two cyber espionage initiatives involved low-sophistication malware, likely attempting to evade app verification measures from Apple and Google. Meta’s findings revealed…
Meta Uncovers Extensive Cyber Espionage Campaigns Targeting South Asia On May 4, 2023, Meta revealed the discovery of a significant cyber espionage operation involving multiple threat actors utilizing a network of fraudulent identities on Facebook and Instagram. These campaigns aimed at individuals across South Asia, deploying a variety of deceptive…
Meta Exposes Extensive Cyber Espionage Campaigns on Social Media in South Asia
May 04, 2023
Social Media / Cyber Risk
Three distinct threat actors exploited countless elaborate fake profiles on Facebook and Instagram to conduct targeted attacks against individuals in South Asia. “These advanced persistent threats (APTs) relied heavily on social engineering tactics to deceive users into clicking malicious links, downloading malware, or sharing sensitive information online,” stated Guy Rosen, Meta’s chief information security officer. “This focus on social engineering reduced their need to invest heavily in malware development.” The counterfeit accounts utilized traditional tactics, pretending to be romantic interests, recruiters, journalists, or military personnel. Notably, two cyber espionage initiatives involved low-sophistication malware, likely attempting to evade app verification measures from Apple and Google. Meta’s findings revealed…
AT&T Inc. (NYSE: T) has proposed a settlement of up to $177 million for its customers, potentially providing affected individuals up to $7,500 each. This announcement is the result of two major data breaches that compromised sensitive information for millions of AT&T users. Incident Overview: The settlement under discussion allocates…
The number of violent “wrench attacks” targeting cryptocurrency holders has escalated alarmingly in 2025, as reported by Alena Vranova, founder of SatoshiLabs, a hardware wallet manufacturer. During her address at the Baltic Honeybadger 2025 conference held in Riga, Latvia, she highlighted the alarming frequency of these attacks, which encompass kidnappings,…
Obfuscated Code Found in SVG Files from Pornography Sites Triggers Malicious Attacks Recent findings from cybersecurity firm Malwarebytes have revealed alarming vulnerabilities in the use of SVG file formats on various adult-themed websites. Researchers discovered that these sites were deploying obfuscated JavaScript within SVG files, which, when downloaded, initiate a…
