Disinformation
August 19, 2024
Azure Domains and Google Abused to Spread Disinformation and Malware Full Text
Abstract
Azure domains and Google have been exploited to spread disinformation and malware in a sophisticated campaign that involves using several Microsoft Azure and OVH cloud subdomains along with Google search notifications.Bleeping Computer
August 16, 2024
Doppelgänger Operation Rushes to Secure Itself Amid Ongoing Detections, German Agency Says Full Text
Abstract
European hosting companies were found to be supporting the Kremlin-linked disinformation campaign, prompting Doppelgänger operators to quickly back up their systems and data.The Record
August 2, 2024
StackExchange Abused to Spread Malicious PyPI Packages as Answers Full Text
Abstract
Threat actors used StackExchange to promote malicious PyPi packages, including 'spl-types,' 'raydium,' 'sol-structs,' 'sol-instruct,' and 'raydium-sdk,' which steal data from browsers, messaging apps, and cryptocurrency wallets.Bleeping Computer
July 10, 2024
US Busts Russian AI-Driven Disinformation Operation Full Text
Abstract
The Department of Justice investigated around 1,000 accounts on social media platform X, previously Twitter, which were used by the Kremlin to spread pro-Moscow propaganda created by the AI-driven Meliorator software.Bank Infosecurity
May 27, 2024 – Government
EU Wants Universities to Work with Intelligence Agencies to Protect Their Research Full Text
Abstract
Europe’s leading research universities should work more closely with the continent’s intelligence agencies to help secure their research from being stolen by hostile states, EU member states recommended this week.The Record
April 24, 2024
Hackers Publish Fake Story About Ukrainians Attempting To Assassinate Slovak President Full Text
Abstract
An unidentified attacker hacked a Czech news service's website and published a fake story on Tuesday claiming that an assassination attempt had been made against the newly elected Slovak president Petr Pellegrini.The Record
March 8, 2024
Russian Influence Operations Against Baltic States and Poland Having ‘Significant Impact’ on Society Full Text
Abstract
These campaigns aim to downplay the impact of Western sanctions on Russia's economy, fuel confrontation among Western countries, and spread fear and panic among the targeted populations.Cyware
March 8, 2024
National Intelligence Agency of Moldova Warns of Russia Attacks Ahead of the Presidential Election Full Text
Abstract
The Russian cyber operations are expected to manipulate public sentiment, interfere with the referendum to join the EU, and discredit pro-European candidates during the presidential elections.Cyware
February 23, 2024
Russian Cyberattackers Launch Multiphase PsyOps Campaign Full Text
Abstract
Russian-linked threat actors conducted a multiwave campaign, Operation Texonto, using a combination of pysops and spear-phishing to spread misinformation in Ukraine and target Microsoft 365 credentials across Europe.Cyware
January 18, 2024
OpenAI Combats Election Misinformation Amid Growing Concerns Full Text
Abstract
OpenAI is taking steps to prevent the use of ChatGPT in spreading election misinformation, including restricting its use for political campaigning and lobbying, and creating tools to empower voters to assess the authenticity of images.Cyware
December 05, 2023
Russia’s AI-Powered Disinformation Operation Targeting Ukraine, U.S., and Germany Full Text
Abstract
The Russia-linked influence operation called Doppelganger has targeted Ukrainian, U.S., and German audiences through a combination of inauthentic news sites and social media accounts. These campaigns are designed to amplify content designed to undermine Ukraine as well as propagate anti-LGBTQ+ sentiment, U.S. military competence, and Germany's economic and social issues, according to a new report shared with The Hacker News. Doppelganger , described by Meta as the "largest and the most aggressively-persistent Russian-origin operation," is a pro-Russian network known for spreading anti-Ukrainian propaganda. Active since at least February 2022, it has been linked to two companies named Structura National Technologies and Social Design Agency. Activities associated with the influence operation are known to leverage manufactured websites as well as those impersonating authentic media – a technique called brandjacking – to disseminate adversarial narratives. The lateThe Hacker News
October 24, 2023
Canadian Lawmakers Targeted by China-Linked ‘Spamouflage’ Disinformation Campaign Full Text
Abstract
Canada has warned of a disinformation campaign linked to China, dubbed "Spamouflage," involving deepfake videos and online posts aimed at discrediting Canadian lawmakers and silencing criticism of the Chinese Communist Party.Cyware
September 05, 2023
Meta Takes Down Thousands of Accounts Involved in Disinformation Ops from China and Russia Full Text
Abstract
Meta has disclosed that it disrupted two of the largest known covert influence operations in the world from China and Russia, blocking thousands of accounts and pages across its platform. "It targeted more than 50 apps, including Facebook, Instagram, X (formerly Twitter), YouTube, TikTok, Reddit, Pinterest, Medium, Blogspot, LiveJournal, VKontakte, Vimeo, and dozens of smaller platforms and forums," Guy Rosen, chief information security officer at Meta, said last week, describing the Chinese disinformation group. The network, which included 7,704 Facebook accounts, 954 Pages, 15 Groups and 15 Instagram accounts, is said to have been run by "geographically dispersed operators" across China, posting content about China and its province Xinjiang, criticism of the U.S, Western foreign policies, and critics of the Chinese government. Central to the activity is the sharing of spammy links, the origins of which trace back to a cluster named Spamouflage (aka DRAGONBRIDGE ) that has beenThe Hacker News
September 1, 2023 – Breach
Data Breach Could Affect More Than 100,000 in Pima County Full Text
Abstract
More than 100,000 Pima County residents could be affected by a nationwide data breach that affected the company that handled COVID-19 case investigations and contact tracing here, officials say.Cyware
September 01, 2023 – Malware
Russian State-Backed ‘Infamous Chisel’ Android Malware Targets Ukrainian Military Full Text
Abstract
Cybersecurity and intelligence agencies from Australia, Canada, New Zealand, the U.K., and the U.S. on Thursday disclosed details of a mobile malware strain targeting Android devices used by the Ukrainian military. The malicious software, dubbed Infamous Chisel and attributed to a Russian state-sponsored actor called Sandworm, has capabilities to "enable unauthorized access to compromised devices, scan files, monitor traffic, and periodically steal sensitive information." Some aspects of the malware were uncovered by the Security Service of Ukraine (SBU) earlier in August, highlighting unsuccessful attempts on part of the adversary to penetrate Ukrainian military networks and gather valuable intelligence. It's said that Russian forces captured tablets used by Ukraine on the battlefield, using them as a foothold to remotely disseminate the malware to other devices by using the Android Debug Bridge ( ADB ) command-line tool. Sandworm, also known by the names FROZENBARENTS, IrThe Hacker News
August 30, 2023
Russians Impersonate Washington Post and Fox News With Anti-Ukraine Stories Full Text
Abstract
This operation, named Doppelganger, has persevered in its attempts to influence Western opinion despite numerous disruptions by Meta and “continuous scrutiny by platforms and researchers.”Cyware
June 14, 2023
France accuses Russians of impersonating French government and media to spread disinformation Full Text
Abstract
The campaign impersonated four of France's most popular daily newspapers — 20 Minutes, Le Monde, Le Parisien, and Le Figaro — publishing “at least 58 articles” on the fake sites to push these false narratives, according to VIGINIUM.Cyware
June 5, 2023
A new wave of sophisticated digital fraud hits Europe Full Text
Abstract
Forced verification and deepfake cases multiply at alarming rates in the UK and continental Europe, according to Sumsub. In Germany alone, forced verification grew by 1500% as a proportion of all fraud cases to 5% of all fraud in Q1 2023.Cyware
May 22, 2023
Pentagon explosion hoax goes viral after verified Twitter accounts push Full Text
Abstract
Highly realistic AI-generated images depicting an explosion near the Pentagon that went viral on Twitter caused the stock market to dip briefly earlier today.BleepingComputer
February 9, 2023
Twitter restricted in Turkey after the earthquake amid disinformation fear Full Text
Abstract
Global internet monitor NetBlocks reported that Twitter has been restricted in Turkey in the aftermath of the earthquake. Global internet monitor NetBlocks reported that network data confirm that Twitter has been restricted in Turkey in the aftermath...Security Affairs
January 26,2023
Google Takes Down 50,000 Instances of Pro-Chinese DRAGONBRIDGE Influence Operation Full Text
Abstract
Google on Thursday disclosed it took steps to dismantle over 50,000 instances of activity orchestrated by a pro-Chinese influence operation known as DRAGONBRIDGE in 2022. "Most DRAGONBRIDGE activity is low quality content without a political message, populated across many channels and blogs," the company's Threat Analysis Group (TAG) said in a report shared with The Hacker News. "However, a small fraction of DRAGONBRIDGE accounts also post about current events with messaging that pushes pro-China talking points." DRAGONBRIDGE was first exposed by Google-owned Mandiant in July 2022, calling out its unsuccessful efforts in targeting rare earth mining companies in Australia, Canada, and the U.S. with the goal of triggering environmental protests against the firms. Also known by the name Spamouflage Dragon, the spammy influence network is known to have a presence across multiple platforms, including YouTube, Blogger, Facebook, and Twitter, primarily dissemThe Hacker News
October 27, 2022
A Pro-China Disinfo Campaign Is Targeting US Elections—Badly Full Text
Abstract
On Wednesday, Mandiant published new findings about a group it calls Dragonbridge, which it's seen for years promoting pro-Chinese interests in fake grassroots social media campaigns designed to influence politics in Taiwan and Hong Kong.Wired
September 28, 2022
ONLINE DISINFORMATION: Under the hood of a Doppelgänger Full Text
Abstract
ONLINE DISINFORMATION is one of the defining issues of our time and the influence of fake news has become an acute threat to our society. Disinformation undermines true journalism and steers the public opinion in highly charged topics such as immigration,...Security Affairs
September 28, 2022
Facebook Shuts Down Covert Political ‘Influence Operations’ from Russia and China Full Text
Abstract
Meta Platforms on Tuesday disclosed it took steps to dismantle two covert influence operations originating from China and Russia for engaging in coordinated inauthentic behavior (CIB) so as to manipulate public debate. While the Chinese operation sets its sights on the U.S. and the Czech Republic, the Russian network primarily targeted Germany, France, Italy, Ukraine and the U.K. with themes surrounding the ongoing war in Ukraine. "The largest and most complex Russian operation we've disrupted since the war in Ukraine began, it ran a sprawling network of over 60 websites impersonating news organizations, as well as accounts on Facebook, Instagram, YouTube, Telegram, Twitter, Change.org and Avaaz, and even LiveJournal," the social media behemoth said . The sophisticated Russian activity, which commenced in May 2022, impersonated mainstream European news outlets like Der Spiegel, The Guardian, and Bild, not to mention build credibility by creating fake accounts acrossThe Hacker News
September 28, 2022
Meta Disables Russian Propaganda Network Targeting Europe Full Text
Abstract
A sprawling disinformation network originating in Russia sought to use hundreds of fake social media accounts and dozens of sham news websites to spread Kremlin talking points about the invasion of Ukraine, Meta revealed Tuesday.Security Week
September 27, 2022
Meta dismantles massive Russian network spoofing Western news sites Full Text
Abstract
Meta says it took down a large network of Facebook and Instagram accounts pushing disinformation published on more than 60 websites that spoofed multiple legitimate news sites across Europe.BleepingComputer
September 05, 2022
TikTok Denies Data Breach Reportedly Exposing Over 2 Billion Users’ Information Full Text
Abstract
Popular short-form social video service TikTok denied reports that it was breached by a hacking group, after it claimed to have gained access to an insecure cloud server. "TikTok prioritizes the privacy and security of our users' data," the ByteDance-owned company told The Hacker News. "Our security team investigated these claims and found no evidence of a security breach." The denial follows alleged reports of a hack that surfaced on the Breach Forums message board on September 3, with the threat actor noting that the server holds 2.05 billion records in a humongous 790GB database. "Who would have thought that TikTok would decide to store all their internal backend source code on one Alibaba Cloud instance using a trashy password?," the hacking group known as BlueHornet (aka AgainstTheWest ) tweeted over the weekend. Bob Diachenko, threat intelligence researcher at Security Discovery, said the breach is "real" and that the data iThe Hacker News
August 03, 2022
Ukraine takes down 1,000,000 bots used for disinformation Full Text
Abstract
The Ukrainian cyber police (SSU) has shut down a massive bot farm of 1,000,000 bots used to spread disinformation on social networks.BleepingComputer
June 17, 2022
Microsoft Dismisses False Reports About End of Patch Tuesday Full Text
Abstract
Microsoft has dismissed media reports about June 14 being the last Patch Tuesday, as the upcoming rollout of the Windows Autopatch service seems to be causing some confusion.Security Week
May 23, 2022
Fronton: Russian IoT Botnet Designed to Run Social Media Disinformation Campaigns Full Text
Abstract
Fronton, a distributed denial-of-service (DDoS) botnet that came to light in March 2020, is much more powerful than previously thought, per the latest research. "Fronton is a system developed for coordinated inauthentic behavior on a massive scale," threat intelligence firm Nisos said in a report published last week. "This system includes a web-based dashboard known as SANA that enables a user to formulate and deploy trending social media events en masse. The system creates these events that it refers to as Инфоповоды, 'newsbreaks,' utilizing the botnet as a geographically distributed transport." The existence of Fronton, an IoT botnet, became public knowledge following revelations from BBC Russia and ZDNet in March 2020 after a Russian hacker group known as Digital Revolution published documents that it claimed were obtained after breaking into a subcontractor to the FSB, the Federal Security Service of the Russian Federation. Further investigatThe Hacker News
March 28, 2022
Ukraine dismantles 5 disinformation bot farms, seizes 10,000 SIM cards Full Text
Abstract
The Ukrainian Security Service (SSU) has announced that since the start of the war with Russia, it has discovered and shut down five bot farms with over 100,000 fake social media accounts spreading fake news.BleepingComputer
March 11, 2022
Anonymous hacked Roskomnadzor agency revealing Russian disinformation Full Text
Abstract
The Anonymous collective continues to launch attacks against Russian entities, this is a summary of recent offensives. Anonymous announced to have hacked the Russian Federal Service for Supervision of Communications, Information Technology and Mass...Security Affairs
March 04, 2022
Both Sides in Russia-Ukraine War Heavily Using Telegram for Disinformation and Hacktivism Full Text
Abstract
Cyber criminals and hacktivist groups are increasingly using the Telegram messaging app for their activities, as the Russia-Ukraine conflict enters its eighth day. A new analysis by Israeli cybersecurity company Check Point Research has found that "user volume grew a hundred folds daily on Telegram related groups, peaking at 200,000 per group." Prominent among the groups are anti-Russian cyber attack groups, including the Ukraine government-backed IT Army, which has urged its more 270,000 members to conduct distributed denial-of-service (DDoS) attacks against Russian entities. Other hacktivist-oriented Telegram groups used to coordinate the attacks on Russian targets via DDoS, SMS or call-based attacks are Anna_ and Mark_, Check Point researchers noted. That said, there may be more to these attacks than meets the eye. "It seems that many of the hacktivist groups are more focused on building self-reputation and receiving credit for supporting Ukraine or Russia, thThe Hacker News
March 2, 2022
Google TAG removes fraudulent ‘influence’ operations linked to Belarus, Moldova, Ukraine Full Text
Abstract
The influence operation was terminated in January, prior to the start of the conflict, but at a time when tensions between Russia and Ukraine was rising due to the presence of Russian troops at the border.ZDNet
January 29, 2022
US targets Russian disinformation in bid to defend Ukraine Full Text
Abstract
The Biden administration has increasingly focused on calling out Russian disinformation and propaganda, making it a central pillar of its strategy to confront Moscow and help defend Ukraine in the face of Russia's war tactics.The Hill
December 01, 2021
Facebook, Instagram remove accounts linked to Chinese COVID-19 disinformation efforts Full Text
Abstract
Meta on Wednesday announced that it had removed hundreds of accounts, pages and groups linked to a Chinese effort to spread disinformation around the United States pressuring the World Health Organization (WHO) to blame the COVID-19 pandemic on China.The Hill
November 21, 2021
Latest Research Links Ghostwriter Disinformation Campaign to Belarus Full Text
Abstract
Researchers from Mandiant Threat Intelligence have claimed with high confidence that the Ghostwriter (UNC1151) disinformation campaign is associated with the government of Belarus.Cyware Alerts - Hacker News
November 15, 2021
Bipartisan commission urges US take immediate steps to curb online misinformation Full Text
Abstract
A report from a bipartisan commission published Monday recommends that U.S. government and social media platform leaders take a series of immediate steps to curb the “crisis of trust and truth” stemming from online disinformation and misinformation.The Hill
November 10, 2021
Cyber agency beefing up disinformation, misinformation team Full Text
Abstract
The Cybersecurity and Infrastructure Security Agency (CISA) is beefing up its disinformation and misinformation team in the wake of a divisive presidential election that saw a proliferation of misleading information online.The Hill
October 08, 2021
Poll: Americans think US politicians, social media spread misinformation more than foreign governments Full Text
Abstract
The majority of Americans believe U.S. politicians and social media companies spread misinformation online more than China, Russia or other foreign governments, a poll released Friday found.The Hill
October 7, 2021
No, there isn’t proof that the private data of 1.5 billion Facebook users is being sold by hackers. Full Text
Abstract
The claim of the breach came from an anonymous account on a hacking forum that, according to Vice, obtained access to the database from a supposed company called “X2Emails.”New York Times
September 1, 2021
Fake DDoS Alerts Leading to BazaLoader Full Text
Abstract
The messages contain fake alerts about the sites being involved in DDoS attacks. They contain a legal threat, along with a file in a Google Drive folder that reportedly offers evidence of the attack source.Cyware Alerts - Hacker News
August 11, 2021
‘Friends’ Reunion Anchors Video Swindle Full Text
Abstract
Spam was on the rise in Q2, with video fraud and COVID-19-related efforts in the mix.Threatpost
August 9, 2021
Black Hat: Scaling Automated Disinformation for Misery and Profit Full Text
Abstract
Researchers demonstrated the power deep neural networks enlisted to create a bot army with the firepower to shape public opinion and spark QAnon 2.0.Threatpost
July 27, 2021
Biden says Russia spreading misinformation ahead of 2022 elections Full Text
Abstract
President Biden said Tuesday that he has been briefed on Russian efforts to spread misinformation related to the 2022 midterm elections.The Hill
June 23, 2021
Iran Media Websites Seized by U.S. in Disinformation Campaign Full Text
Abstract
DoJ uses sanctions laws to shut down an alleged Iranian government malign influence campaign.Threatpost
June 05, 2021
Watch out: These online casino emails never pay what they promise Full Text
Abstract
Spammers are abusing affiliate programs to promote online casinos, such as Raging Bull Casino, Sports and Casino, Ducky Luck, and Royal Ace Casino, with misleading emails.BleepingComputer
May 26, 2021
Influencers Offered Money to Vilify Vaccine Full Text
Abstract
PR agency allegedly asked influencers to discredit Pfizer vaccine in exchange for paymentInfosecurity Magazine
May 20, 2021
Spammers flood PyPI with pirated movie links and bogus packages Full Text
Abstract
The official Python software package repository, PyPI, is getting flooded with spam packages, as seen by BleepingComputer. These packages are named after different movies in a style that is commonly associated with torrents and "warez" sites hosting pirated content.BleepingComputer
May 18, 2021
#RSAC: The Invisible War of Internet Misinformation Full Text
Abstract
RSA Conference keynoter Theresa Payton outlines how misinformation works and what organizations can do to help combat itInfosecurity Magazine
April 9, 2021
Facebook Removes 16k Groups for Trading Fake Reviews Full Text
Abstract
Double intervention by UK watchdog prompts Facebook to axe groups trading in fake reviewsInfosecurity Magazine
April 06, 2021
Facebook removes over 1,100 accounts spreading deceptive content Full Text
Abstract
Facebook on Tuesday announced that during March it removed more than 1,100 accounts tied to spreading deceptive content in a variety of countries as part of its effort to root out domestic and international disinformation efforts.The Hill
March 26, 2021
Warner presses Zuckerberg to tackle vaccine misinformation on Facebook, Instagram Full Text
Abstract
Senate Intelligence Committee Chairman Mark Warner (D-Va.) on Friday pressed Facebook to do more to combat the spread of COVID-19 vaccine misinformation on both its platform and Instagram.The Hill
March 19, 2021
Website Builders Take Hands-Off Approach to Fake News Full Text
Abstract
Research reveals most don't take down conspiracy theoriesInfosecurity Magazine
March 18, 2021
Polish Government Websites Hacked and Used to Spread Fake Information on Radioactive Leak Full Text
Abstract
The National Atomic Energy Agency and Health Ministry websites briefly carried claims of a supposed nuclear waste leak coming from neighboring Lithuania and threatening Poland.Security Week
February 23, 2021
Twitter removes 100 accounts linked to Russia disseminating disinformation Full Text
Abstract
Twitter removed dozens of accounts allegedly used by Russia-linked threat actors to disseminate disinformation and target western countries. Twitter has removed dozens of accounts used by Russia-linked threat actors that were used to disseminate disinformation...Security Affairs
February 22, 2021
Content Provenance Group Formed Full Text
Abstract
Media and tech companies ally to tackle disinformation and fraudulent online contentInfosecurity Magazine
February 18, 2021
Groups launch $22 million effort to battle disinformation targeting Latinos Full Text
Abstract
A Latino advocacy group and media watchdog will invest $22 million in an effort to battle disinformation targeted at the Hispanic community.The Hill
February 17, 2021
YouTube Terminates 3000 Channels in Russia and China Clampdown Full Text
Abstract
Removals a response to coordinated influence operationsInfosecurity Magazine
February 16, 2021
Which? Flags Fake Amazon Reviews Full Text
Abstract
Consumer group finds Amazon retailers can buy positive reviews by the bundleInfosecurity Magazine
February 11, 2021
Political Bias and Impulsive Behavior Open Door to Misinformation Full Text
Abstract
New studies illuminate debate on social media echo chambersInfosecurity Magazine
February 9, 2021
Spammers Flood Python Package Index Portal and GitLab with Garbage Content Full Text
Abstract
Spammers have inundated the Python Package Index (PyPI) portal and the GitLab source code hosting website with garbage content, flooding both with ads for shady sites and services.ZDNet
February 02, 2021
Former cyber chief pushes for renewed focus on combating disinformation Full Text
Abstract
Former Department of Homeland Security (DHS) cyber chief Suzanne Spaulding, a key official involved in the response to Russian interference efforts in 2016, is pushing hard for more to be done to combat disinformation and promote civics education as the nation reels from the fallout of the recent election.The Hill
January 26, 2021
Twitter Asks Users to Police Misinformation Full Text
Abstract
New Birdwatch scheme invites users to write notes on tweets they think are misleadingInfosecurity Magazine
January 15, 2021
Fujitsu: High Risk of #COVID19 Vaccine Disinformation Campaigns Full Text
Abstract
Individuals and businesses should prepare for a wave of vaccine disinformation campaignsInfosecurity Magazine
January 06, 2021
Krebs says Trump ‘fanned the flames’ of election disinformation with video Full Text
Abstract
Christopher Krebs, the nation’s former top cybersecurity official, slammed President Trump and supporters who have spread election disinformation, including Trump's video Wednesday telling rioters who stormed the Capitol that the November election was stolen.The Hill
December 17, 2020
Disinformation Spreaders Predicted by AI Full Text
Abstract
New AI algorithm predicts which Twitter users will share unreliably sourced newsInfosecurity Magazine
December 16, 2020
Facebook Closes Disinformation Accounts Linked to French Military Full Text
Abstract
Facebook said Tuesday that it had removed two networks based in Russia and one linked to the French military, accusing them of carrying out interference campaigns in Africa.Security Week