Threat Post

Facebook may be fined as much as $5 million by the FTC for data issues related to the Cambridge Analytica incident.

Google Play has removed up to 50 apps that once downloaded plagued systems with full-screen ads.

The malware hides in the legitimate game downloads, signed with a real certificate; connections to ShadowHammer have been found.

How concerned are you about the privacy implications of facial recognition? Weigh in with our poll.

Ever-changing Qbot trojan has been spotted in a fresh campaign with a new “context aware” delivery technique.

As U.S. citizens realize that facial recognition is present in real-life applications, more questions are arising about consent, how data is shared - and what regulation exists.

The malware is behind billions in banking and credit-card losses.

More and more attacks taking advantage of a XSS and RCE bug in the popular plugin have cropped up in the wild.

Overall, in 2018 the FBI received more than 351k reported scams with losses exceeding $2.7 billion.

China-based app maker ignored repeated warnings by researchers that its password database - stored in plain text - was accessible to anyone online.

A unique identifier is enabled by default on every iPhone that's shipped, allowing advertisers to follow the phone's activity across the web.

The attack is targeting financial regulators and embassy staff-- but probably isn't the work of an APT.

The messaging app that will replace the government's use of WhatsApp and Telegram was released last week, with security vulnerability included.

The malware researcher has pleaded guilty to two out of 10 charges; one with creating the Kronos malware and the other with conspiracy.

The information includes data on all rehab treatments and procedures, linked with patients' names and other info.

McAfee, Sophos and Avast are among the antivirus software suites impacted.

On the heels of several Facebook data privacy snafus this week - and over the past year - users no longer trust the platform.

A researcher said that millions of records were leaking 300,000 Tap30 drivers' names, ID numbers and phone numbers.

The incident was the work of malicious cyberattackers.

The flaw, which existed in a Shopify API endpoint, has been patched.