Security News
According to an investigative journalist team, the Israeli authors of the infamous Pegasus mobile spyware, NSO Group, have been using a spoofed Facebook login page, crafted to look like an internal Facebook security team portal, to lure victims in. The news comes as Facebook alleges that NSO Group has been using U.S.-based infrastructure to launch espionage attacks.
Facebook on Thursday said that its Messenger app will be watching behind the scenes for scammers using the smartphone communication system. Safety notices will pop up in Messenger text chats if activity taking place in the background is deemed suspicious by artificial intelligence software, according to director of privacy and safety product management Jay Sullivan.
Facebook has agreed to pay a Can$9 million fine for making false or misleading claims about its privacy settings, Canada's competition watchdog announced Tuesday. An investigation of the social media network's practices from 2012 to 2018 found that the company gave Canadians the impression that users could control who saw their personal information on Facebook and Messenger.
UPDATE. A new Android malware family has been discovered, which targets popular messaging apps like WhatsApp and Facebook Messenger to gather intelligence on Android victims. Researchers assess with "High confidence" that the malware is operated by Wolf Research, a Germany-based spyware organization that develops and sells espionage-based malware to governments.
Facebook founder Mark Zuckerberg on Monday urged the European Union to take the lead in setting global standards for tech regulation or risk seeing countries follow China as a model. Breton, one of the EU's top officials on tech policy, said that Facebook and other big tech companies must also live up to certain values.
Facebook has awarded a security researcher $20,000 for discovering a cross-site scripting vulnerability in the Facebook Login SDK, which is used by developers to add a "Continue with Facebook" button to a page as an authentication method. He discovered an issue there in the Facebook Login SDK for JavaScript.
Security researcher Vinoth Kumar says Facebook awarded him $20,000 after he discovered and reported a Document Object Model-based cross-site scripting vulnerability that could have been exploited to hijack accounts. The researcher says he discovered the vulnerability in the window.
Most of the networks Facebook took down last month were still trying to grow their audience or had a large portion of phony engagement on their pages - engagement that came from the networks' own, fake accounts. Last month, Facebook pulled down a total of 1,887 misleading accounts, pages and groups which it traced to eight networks.
More than six years after Facebook launched its ambitious Free Basics program to bring the Internet to the masses, the social network is back at it again with a new zero-rating initiative called Discover. The service, available as a mobile web and Android app, allows users to browse the Internet using free daily data caps.
More than six years after Facebook launched its ambitious Free Basics program to bring the Internet to the masses, the social network is back at it again with a new zero-rating initiative called Discover. The service, available as a mobile web and Android app, allows users to browse the Internet using free daily data caps.