Facebook yesterday took action against several networks for violations of the social medium's policies “against foreign interference and coordinated inauthentic behavior.” The networks were based in several countries: Brazil, Canada, Ecuador, Ukraine, and the US. The networks in Canada and Ecuador exhibited both inauthenticity and foreign interference (with audiences in El Salvador, Argentina, Uruguay, Venezuela, Ecuador, and Chile). The networks in Brazil, Ukraine, and the US used coordinated inauthenticity mostly to engage domestic audiences.
Researchers at Malwarebytes report pre-installed malware on ANS (American Network Solutions) UL40 phones running Android OS 7.1.1. The devices are among those sold by Assurance Wireless under the US Federal Communications Commission’s Lifeline program, which makes budget phones available to low-income consumers. This is the second time this year Malwarebytes has found pre-installed malware in discount Lifeline devices.
ESET has a report out on the Evilnum APT, a little-discussed group that's been active against financial technology companies since 2018 at least. The group uses a mix of internally developed and commodity attack tools; they steal financial information from trading and investment platforms.
Check Point researchers today outlined a new variant of Joker Android malware hiding inside apparently legitimate apps, some of which circulate in the Play store. Forbes summarizes the findings as more evidence of Joker's dangerous sophistication.
FreddieMac, the US Federal Home Loan Mortgage Corporation, has disclosed a data breach. It's apparently a third-party incident: borrowers whose loans were serviced by one of FreddieMac's "due diligence vendors" have received letters warning them of the breach.