Security news aggregator

Latest coverage for Social Media

Covers how social media can expose personal data, spread scams, enable account takeover, and provide channels for influence or abuse.

74 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Social media comprises online services where people and organizations publish content, communicate, and form networks. The term covers public posts, private messages, groups, live streams, advertising systems, and the APIs and third-party applications that process platform data.

For security teams, these platforms expose identity, relationship, and behavioral information that can support targeted phishing, impersonation, or social engineering. Compromised accounts may be used to distribute malicious links or fraud, while excessive sharing and poorly controlled integrations can expose personal or corporate data. Relevant controls include strong authentication, phishing-resistant account recovery, least-privilege access for connected applications, monitoring for brand and executive impersonation, and clear retention and privacy policies. Public posts and platform telemetry can also provide threat intelligence, but collection and use may be constrained by privacy obligations and applicable data-protection rules.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 74 Filtered view

Malware Targets Banks, Crypto Platforms and Social MediaNewly surfaced Android-based banking Trojan gives threat actors near-total control over infected devices, letting them steal user credentials for direct access to financial accounts, says researchers. Rokarolla tricks users into side-loading malicious versions of popular, high traffic apps.

Bank Info Security 1 month, 2 weeks ago

China Using LinkedIn to Recruit Government Insiders

Five Eyes Agencies Document 5-Step Chinese Job Platform Spy SchemeThe Five Eyes intelligence agencies issued a rare joint bulletin warning that Chinese military intelligence is using LinkedIn, Indeed, and Upwork to recruit government and military insiders. The operation targets clearance holders, military personnel, academics and journalists.

Bank Info Security 1 month, 2 weeks ago

Musk's X Asks US FTC to Nullify Data Security Order

Social Media Platform Files Petition With Agency Over May 2022 Consent OrderElon Musk's social media company wants a do-over with the U.S. Federal Trade Commission in a petition arguing the agency should terminate data security oversight 16 years early. The FTC began Tuesday a public comment period for X's request to set aside or fully modify a May 2022 consent order.

Bank Info Security 2 months, 2 weeks ago

Europe Gliding Toward Mandatory Online Age Verification

Meta Ruling Points to Obligatory VerificationThe European Union all but mandated the use of age verification technologies by large social platforms by provisionally finding that Meta broke digital rules by allowing pre-teens to login. Many European countries are following Australia's lead in raising the minimum age for social media use.

GrokAI Non-Consensual Sexual Imagery Raises Official HacklesEuropean regulatory pressure on Elon Musk's X social media network intensified this week with new probes into potential breaches of privacy roles by Grok AI chatbot. X claims to have stopped Grok from outputting the offending images, but apparently the chatbot still generates them.

Bank Info Security 5 months, 2 weeks ago

Police Raid Elon Musk's X Paris Office in Criminal Probe

Social Media Network Faces Legal Barrage From France, United Kingdom and SpainIn the space of a few hours, French authorities raided X's office in Paris, the British privacy regulator opened an investigation into X and xAI, and Spanish Prime Minister Pedro Sánchez announced legal proposals that would criminalize algorithmic manipulation and amplification of illegal content.

Bank Info Security 6 months ago

UK Probes X Over AI Deepfake Porn

Elon Musk's Social Media Network Faces Mounting Backlash from GovernmentsThe British communications regulator is formally investigating social media network X over the willingness of its Grok AI to let users virtually undress people, including minors. Ofcom said Monday that will probe whether X is complying with the Online Safety Act.

Security Experts See Coincidental Timing After Leak of Scraped Instagram User DataInstagram said a massive wave of password reset emails sent to its users traced to malicious abuse of a legitimate feature, but didn't result from any breach of its systems. Separately, security experts said a threat actor leaked 6.2 million users' email addresses, among other account information.

Bank Info Security 7 months, 1 week ago

React Flaw Mitigation Leads to Cloudflare Outage

Outage Briefly Took Down Zoom, LinkedIn and Other WebsitesContent delivery network giant Cloudflare is investigating a brief outage early Friday that took down multiple websites. The incident marks the second outage in the span of a month, although the causes are unrelated. It stemmed from how Cloudflare's web application firewall parses requests.

Bank Info Security 7 months, 3 weeks ago

Cryptohack Roundup: Samourai Execs, Crypto CEO Sentenced

Also: Obama Twitter Hacker Ordered to Forfeit $5.3 MillionEvery week, ISMG rounds up cybersecurity incidents in digital assets. This week, Samourai Wallet founders and Oklahoma Crypto CEO sentenced, Obama Twitter hacker ordered to forfeit funds, Chicago crypto ATM CEO charged and White House is reviewing a rule expanding IRS crypto oversight.

Only Regulations Can Convince Meta to Cut Its Revenue Stream From Fraud VictimsHow motivated would you be to stop a source of revenue if you discovered that some of your advertisers are scamming your customers? Most businesses would want to protect their customers. In the strange universe of social media giant Meta, incentives for doing the right thing are totally different.

Bank Info Security 8 months, 2 weeks ago

Patients Sue Florida Hospital Over 'Humiliating' Photo Posts

Staff Allegedly Took Photos, Posted Pics on Social Media Without Patient ConsentA Florida hospital is facing several lawsuits filed by patients who alleged staff members used their personal phones to take and post humiliating photos on social medial of the patients without their consent while they were asleep or medicated, and semi-undressed.

Bank Info Security 9 months, 2 weeks ago

Nursing Home Fined $182K for Posting Patient Photos Online

'Success Stories' Social Media Program Impermissibly Disclosed PHI of 150 PatientsA "Success Stories" marketing campaign by a Delaware nursing home that involved posting photos and names of patients on social media resulted in a $182,000 federal fine. Regulators say the company violated HIPAA rules through the unauthorized disclosure of patients' protected health information.

Bank Info Security 9 months, 4 weeks ago

FileFix Campaign Uses Facebook Suspension as Bait

Users Download Malware in Bid to Placate MetaA newly surfaced FileFix social engineering campaign puts a new spin on ClickFix attacks by goading users into loading malware under the guise of reporting a wrongful account suspension to social media giant Facebook. Victims likely get sucked into the scam by following a link from a phishing email.

How IT Leaders Can Navigate Regulatory Complexity, Use Tech for Digital SovereigntyFrom Schrems II to TikTok fines, data sovereignty is redefining the rules of digital engagement. It is no longer an option for enterprises. CIOs must navigate a maze of data laws and tech strategies to stay compliant and competitive in a world without digital borders.

Bank Info Security 1 year, 1 month ago

Hackers Target Job Recruiters Through Malicious Resumes

Russian Speaking Hackers FIN6 Flip Job Fraud ScriptFinancially-motivated hackers tracked as FIN6 have flipped the script on job fraud, impersonating job seekers to phish recruiters and deploy stealthy malware through fake resumes hosted on trusted cloud platforms. The group engages recruiters on LinkedIn and Indeed with realistic resumes.

Bank Info Security 1 year, 1 month ago

OpenAI's ChatGPT a Hit With Nation-State Hackers

Malicious Accounts Linked to Malware, Influence OperationsOpenAI is using its artificial intelligence models to detect and counter abuse and has banned accounts associated with malicious state-linked operations. Hackers aligned with Russia, China, North Korea and Iran have used OpenAI's tools for malware development and social media manipulation.

Bank Info Security 1 year, 1 month ago

Researchers: Meta and Yandex Broke Android Privacy

Web-to-App Pipeline Uses Meta Pixel and Yandex MetricaAmerican social media giant Meta and Russian counterpart Yandex each found methods to break through privacy protections enabled by Android users, say academics in newly disclosed research. A Meta spokesperson in a prepared statement said it stopped the tracking "upon becoming aware of the concerns."

Social Engineering Attacks Trick Victims Running Malware-Installation ScriptsAttackers are tapping TikTok to distribute videos, apparently generated using artificial intelligence tools, to trick victims into running scripts that install information-stealing malware, researchers warn. The campaign is the latest in a long line of schemes designed to distribute infostealers.

Bank Info Security 1 year, 1 month ago

Meta Begins AI Training Using EU Personal Data

German Court Rebuffs Consumer Group Bid for InjunctionMeta can use the public posts of European Instagram and Facebook users to train its artificial intelligence models starting Tuesday after a German court rejected an injunction against the company. The court said Meta has a "legitimate interest" in processing the data.

Loading more headlines...