Phishing Attacks Targeted Facebook Users With Fake Verification Offer
Attacks also used a compromised chatbot in campaign to steal sensitive information from Business Users
Stay informed on the latest Facebook security updates and protect your personal data with expert analysis and tips on our Information Security tag.
Search across headline titles and summaries.
Background for this topic.
Facebook is a social networking platform for user profiles, messaging, groups, pages, and content sharing, delivered through web and mobile clients and interfaces for third-party applications. Its security relevance comes from concentrating identity, relationships, communications, and personal data in a connected account ecosystem; compromise can expose private content or enable impersonation and targeted social engineering.
Security coverage includes vulnerabilities in Facebook’s clients, APIs, authentication, and account-recovery workflows, along with abuse of messages, groups, applications, and advertising features to distribute phishing or malicious links. Practitioners should distinguish platform flaws from credential theft or fraudulent content, assessing advisories by affected component, exploitability, and required updates. Privacy controls and third-party permissions reduce exposure but do not replace unique credentials, multi-factor authentication, session review, and prompt reporting; investigations may also require platform logs and preserved account or message evidence.
Weekly headline count for the current query.
Attacks also used a compromised chatbot in campaign to steal sensitive information from Business Users
Meta’s WhatsApp demands contempt ruling after users report NSO Group-linked phishing
The UK’s cybersecurity agency offered advice to “high-risk’ individuals” on how to protect against social engineering and cyber-attacks
Silver Fox pivots from ValleyRAT tax lures to WhatsApp‑style stealers, blending espionage & phishing
Dutch intelligence reveals Russian state hackers are trying to hijack the Signal and WhatsApp accounts of key targets
Cybersecurity researchers issue warning over a surge in attacks designed to trick Facebook users into handing over login credentials
Trustwave SpiderLabs has observed new banking Trojan Eternidade Stealer targeting Brazil using WhatsApp for propagation and data theft
The Singapore police said Facebook is the top platform for online scams in the country
WhatsApp has fixed a zero-day vulnerability linked to a sophisticated cyber-attack
The Pwn2Own competition is offering a $1m reward to any teams able to unearth a WhatsApp code execution exploit
Around half of the world’s top 100 websites have already integrated passkey support
A new malware campaign disguised as Kling AI used fake Facebook ads and counterfeit websites to distribute an infostealer
The Israeli spyware maker must pay $444,719 in compensatory damages to Meta and $167.25m in punitive damages
Alongside its new Meta AI app, Facebook’s parent company launched several new products to help secure open-source AI applications
Microsoft highlighted a new Star Blizzard campaign targeting WhatsApp accounts, as the group adapts its TTPs following the takedown of its infrastructure by law enforcement
A US judge has ruled in favor of WhatsApp in a long-running case against commercial spyware-maker NSO Group
The Irish Data Protection Commission has fined Meta $263m for a 2018 data breach impacting 29 million Facebook accounts
Group-IB revealed key differences in VietCredCare and DuckTail infostealer malware targeting Facebook Business accounts
The Appeals Centre Europe is supported by Meta’s Oversight Board Trust and certified by Ireland's media regulator
Meta has unpaused a project to train AI on Facebook and Instagram posts, despite privacy concerns