Threat Intelligence , Phishing Social media scam-related losses surge, FTC report finds April 29, 2026 Share By SC Staff (Adobe Stock) TechCrunch reports that financial losses linked to social media scams were reported by the U.S. Federal Trade Commission to have increased eightfold over time, exceeding losses attributed to other methods of fraud used by criminals to trick consumers. The agency found that Americans lost $2.1 billion to social media-conducted scams in 2025 and nearly a third of victims who reported monetary loss said the scams originated from social media platforms. Across platforms, nearly 60% of individuals lost money through romance scams and over 40% were affected by online shopping scams that stem from fraudulent social media ads. Roughly $1.1 billion in reported losses were linked to investment scams. Some of the tactics involved malicious posts advertising investing strategies, as well as scammers posing as advisors and forming groups with people with fabricated success stories. Facebook had the most reported losses, followed by WhatsApp and Instagram, but Facebook alone had greater reported losses compared with scams conducted through email or text messages combined. SC Staff Related Malware Novel multi-stage malware campaign stealthily targets Pakistan SC Staff April 29, 2026 More refined obfuscation tactics have been leveraged in a new multi-stage malware campaign targeted at the employees of Pakistan's Punjab Safe Cities Authority and Punjab Police Integrated Command, Control & Communication Centre, GBHackers News reports. Vulnerability Management New Windows flaw stems from incomplete fix for APT28-exploited bugs SC Staff April 29, 2026 New Windows flaw stems from incomplete fix for APT28-exploited bugs SecurityWeek reports that Microsoft's deficient February patch for the high-severity Windows SmartScreen and Shell prompt bypass bug CVE-2026-21510, which has been exploited by the Russia-linked advanced persistent threat group APT28, has resulted in the new authentication coercion zero-click bug, tracked as CVE-2026-32202. Threat Intelligence TrueConf vulnerabilities weaponized in pro-Ukrainian hacktivist attacks against Russia SC Staff April 29, 2026 Attacks chaining a critical vulnerability and a pair of high-severity flaws impacting the TrueConf video conferencing software have been launched by pro-Ukrainian hacktivist operation PhantomCore to infiltrate Russian networks since September, The Hacker News reports. Related Events Cybercast Better Threat Intelligence Between Public and Private Sectors On-Demand Event Virtual Conference Nationwide Cybersecurity Summit 2025: Safeguarding America’s Digital Future On-Demand Event Virtual Conference Securing the Future of Finance: Strategies to Counter Modern Cyber Threats On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Deauthentication Attack Defacement Denial of Service Dictionary Attack Distributed Scans Domain Hijacking Dumpster Diving Fault Line Attacks Hybrid Attack Reconnaissance You can skip this ad in 5 seconds