Risky Bulletin Risky Bulletin: Meta disrupts Mexican cartels
24 snips
Mar 16, 2026 Meta used AI to suspend thousands of cartel-linked accounts tied to trafficking and extortion. A major leak exposed e‑government source code and sold citizen data. Signal spearphishing tricked officials into revealing PINs. An AppsFlyer supply‑chain compromise injected a clipboard crypto stealer. Multiple AppArmor flaws enable root escalation and container escapes.
AI Snips
Chapters
Transcript
Episode notes
Moscow Mobile Internet Cut After FSB Gains Control
- Moscow residents faced a mobile internet outage starting March 6 after the FSB gained power to cut access, with some operators restoring only government-approved sites.
- The outage coincided with tightened state control over connectivity.
AppsFlyer Supply Chain Delivers Crypto Address Hijacker
- AppsFlyer's analytics SDKs were compromised to deliver a clipboard-stealing malware replacing copied crypto addresses with attacker-controlled ones.
- The malware targeted Bitcoin, Ethereum, Solana, Ripple and Tron across mobile and web SDKs.
GitHub Campaign Reuses Glassworm To Add Wallet Stealer
- Hundreds of GitHub accounts were breached to add a crypto wallet stealer to Python projects using Glassworm-stolen credentials and infrastructure.
- The campaign began March 8 and reused Glassworm's tools and infrastructure.