Security Experts:

Connect with us

Hi, what are you looking for?



Facebook Adapts Defenses as Deception Campaigns Go Stealth

Facebook said Wednesday that it has disrupted more than 150 deceptive influence schemes since 2017, with Russia the biggest single source, as culprits strive to stay “under the radar.”

Facebook said Wednesday that it has disrupted more than 150 deceptive influence schemes since 2017, with Russia the biggest single source, as culprits strive to stay “under the radar.”

The number of coordinated inauthentic behavior (CIB) campaigns derailed at the leading social network ramped up each year since a Russia-linked operation to sway the outcome of the 2016 US presidential election put Facebook on the defensive.

While those behind influence operations (IO) went unchecked on the playing field in 2016, Facebook has invested in hiring, automated systems, and industry alliances over the ensuing years.

“These efforts have pressed threat actors to shift their tactics,” Facebook head of security policy Nathaniel Gleicher said during a briefing on the report.

“They have – often without success – moved away from the major platforms and increased their operational security to stay under the radar.”

As tactics have gone more steathly, the deception campaigns have seen their reach shrink since, by design, they are trying not to be noticed by the social network, according to executives.

From 2017 through the middle of this year, Facebook has exposed and taken down more than 150 covert operations that violate its policy against coordinated inauthentic behavior, according to the report.

“These operations have targeted public debate across both established and emerging social media platforms, as well as everything from local blogs to major newspapers and magazines,” Gleicher said.

“They were foreign and domestic, run by governments, commercial entities, politicians, and conspiracy and fringe political groups.”

The campaigns originated in more than 50 countries overall, with Russia the largest single source accounting for 27 of the deceptive networks, the report indicated.

Iran was the source of 23 CIB campaigns, second to Russia, according to the report.

Meanwhile, the United States was the most common target as well as home to nine such influence operations by fringe political characters, conspiracy pushers, and consulting or public relations firms.

Influence campaigns continue to “push the boundaries of acceptable online behavior” and blur lines between deceit and free speech, Gleicher said.

Those behind IO campaigns were expected to continue to try to “weaponize” moments of uncertainty worldwide, amplifying division around crises such as the pandemic and civic protests.

The US 2020 election campaign brought to the forefront the complexity of separating bad actors behind covert influence operations from unwitting people they co-opt or local folks whose interests are in synch with the deceptive messaging, according to Gleicher.

“We found and removed IO attempting to get authentic voices to post on their behalf,” the report said.

“We also saw authentic voices, including the then-US President, promoting false information amplified by IO from various countries including Russia and Iran.”

Related: Social Media Firms on Alert for Election Day Misinformation

Related: Facebook Removes 14 Networks Fueling Deceptive Campaigns

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.


The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.


A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...