Bloomberg revealed on Thursday that Apple and Meta both handed over user data to hackers in mid-2021 when they responded to fake emergency requests that appeared to come from law enforcement.
Apple, Inc. and Meta Platforms, Inc. both received fraudulent emergency requests for user information such as address, phone number, and IP address, from hackers in the summer of 2021. Both companies responded to the requests, handing over the data before realizing the requests were not from official law enforcement organizations.
Law enforcement and intelligence organizations frequently request emergency information from social media companies to aid in active investigations and in some cases has saved lives.
While it remains unclear where the requests originated, it is suspected by officials that the now-defunct hacker group “Recursion Team” was involved, and that many members had since moved over to the active hacker group known as “Lapsus$.”
The requests appear to have come from all over the world, say investigators. Some of the requests sent to companies in 2021 by hacker groups included forged signatures of officials.
ARTICLE: LAURA SPIVAK
MANAGING EDITOR: CARSON CHOATE
PHOTO CREDITS: BLOOMBERG