Fake Software Tutorials on TikTok Spread Vidar Stealer
Threat actors push fake free-software tutorials on TikTok and Instagram to spread Vidar stealer
Covers how social media can expose personal data, spread scams, enable account takeover, and provide channels for influence or abuse.
Search across headline titles and summaries.
Background for this topic.
Social media comprises online services where people and organizations publish content, communicate, and form networks. The term covers public posts, private messages, groups, live streams, advertising systems, and the APIs and third-party applications that process platform data.
For security teams, these platforms expose identity, relationship, and behavioral information that can support targeted phishing, impersonation, or social engineering. Compromised accounts may be used to distribute malicious links or fraud, while excessive sharing and poorly controlled integrations can expose personal or corporate data. Relevant controls include strong authentication, phishing-resistant account recovery, least-privilege access for connected applications, monitoring for brand and executive impersonation, and clear retention and privacy policies. Public posts and platform telemetry can also provide threat intelligence, but collection and use may be constrained by privacy obligations and applicable data-protection rules.
Weekly headline count for the current query.
Threat actors push fake free-software tutorials on TikTok and Instagram to spread Vidar stealer
Meta confirms an AI tool vulnerability led to unauthorized access to Instagram accounts after a failure in email verification during password reset
Push Security has uncovered a new AiTM phishing campaign targeting TikTok for Business accounts using Google and TikTok themed login pages
Revolut claims social media sites make £3.8bn annually from scam ads targeting European users
Researchers discover that PureRAT’s code now contains emojis – indicating it has been written by AI based-on comments ripped from social media.
Cybersecurity Researchers at ReliaQuest warn of an ongoing campaign delivered to “high-value individuals” via LinkedIn messages
A new probe, opened two months after a €530m fine to TikTok, will investigate the tech giant’s storage of EU users’ data in China
The UK ICO has welcomed a ruling in its favor in a long-running battle to issue a fine to TikTok
Taiwan warned that popular Chinese-owned apps, including TikTok and Weibo, are harvesting personal data and sending it back to servers in China
A Vietnam-nexus hacking group distributes infostealers and backdoors via social media ads promoting fake AI generator websites
Malware campaign exploiting TikTok’s popularity has been observed using social engineering to spread Vidar and StealC
Around half of US and UK consumers have seen fraud ads and content on ‘refund hacks’ on social media
CISA won't post standard cybersecurity updates on its website, shifting to email and social media
Ireland’s data protection watchdog accuses the Chinese social media giant of violating GDPR with transfers of European users’ data to China
Posing as potential employers, Slow Pisces hackers conceal malware in coding challenges sent to cryptocurrency developers on LinkedIn
Action Fraud reported a spike in social media and email account hacks in 2024, resulting in losses of nearly £1m
The Information Commissioner’s Office is now investigating how TikTok uses 13–17-year-olds’ personal information
A Bitdefender researcher was targeted by North Korea’s Lazarus with the lure of a fake job offer
The Supreme Court has upheld a law that could potentially ban TikTok in the US
AliExpress, Shein, Temu, TikTok, WeChat and Xiaomi are accused of operating unlawful data transfers to China