As Europe awaits the General Data Protection Regulation (GDPR) to come into force on May 25th, Facebook is enforcing new terms of service to its users to ensure compliance with the upcoming data privacy law. It will regulate how Facebook collects and uses user data that is critical to the success of its advertisement business. While Facebook executives are claiming that GDPR will have minimal impact on its user base and its revenues, experts opine that there are multiple other ways that GDPR can affect Facebook in a severe manner. With GDPR being an extraordinary regulation with strong potential to impact large businesses, Facebook stands exposed to a number of uncertainties that are yet to take shape.
Individual research contributed by Adi Raff and Yuval Shapira.
On May 3, 2018, Radware’s cloud malware protection service detected a zero-day malware threat at one of its customers, a global manufacturing firm, by using machine-learning algorithms. This malware campaign is propagating via socially-engineered links on Facebook and is infecting users by abusing a Google Chrome extension (the ‘Nigelify’ application) that performs credential theft, cryptomining, click fraud and more.
On April 12, 2018, Radware’s threat research group detected malicious activity via internal feeds of a group collecting user credentials and payment methods from Facebook users across the globe. The group manipulates victims via phishing emails to download a painting application called ‘Relieve Stress Paint.’ While benign in appearance, it runs a malware dubbed ‘Stresspaint’ in the background. Within a few days, the group had infected over 40,000 users, stealing tens of thousands Facebook user credentials/cookies. This rapid distribution and high infection rate indicates this malware was developed professionally. The group is specifically interested in users who own Facebook pages and that contain stored payment methods. We suspect that the group’s next target is Amazon as they have a dedicated section for it in the attack control panel. Radware will continue to analyze the campaign and monitor the group’s activity. Prior to publication of this alert, Radware has detected another variant of the malware and saw indication of this new version in the control panel.
If George Orwell was alive today, he would probably be considered an optimist as far as our right to privacy goes. That’s the perspective of our Vice President of Security Solutions and cyber security expert, Carl Herberger. Last week, Carl sat down for a Facebook LIVE event to discuss our right to privacy, and how to defend against it in the face of growing security threats. He discusses a number of recent hacks, including those on financial institutions, the healthcare system, and even dating websites, like Ashley Madison. He also addressed a number of questions from followers, such as what we should avoid posting on social media, how online privacy works, and what expectations of privacy we should have in an age of the Internet of Things and constant data breaches.
Get your questions ready!
On June 13th, I’ll be back in the states and going live on Facebook to discuss some of your biggest questions about privacy in today’s cybersecurity landscape.
So many businesses aren’t prepared to fight back and protect your data, so we’ll talk about what questions you should be asking to make sure you’re protected.
I’ll give you some important questions for your healthcare provider, banks, and more to make sure your data is safe from cyber criminals.
Mark your calendars now! And, make sure to follow the Radware Facebook page for more updates. See you on the 13th!
On June 13th, I’ll be back in the U.S. and will be going live on Facebook to talk about privacy, including some crucial questions to ask your healthcare providers, banks, and others to make sure your data is protected. Make sure to follow the Radware Facebook page for more updates. I look forward to answering your questions and chatting with you then.
Last fall, Twitter founder Ev Williams gave an excellent talk at XOXO* in which he nailed down what makes some online ventures succeed, and others fail: Convenience. Yes, your company needs to have rock-solid technology and excellent management, but if what you’re offering doesn’t somehow make your users’ lives easier, then it will fail. So, how do we define convenience? According to Williams: