About Me
id="article-body" class="row" section="article-body" data-component="trackCWV">
LiveRamp is a major data partner for Facebook and suffered a hack, causing a domino effect of scam ads.
Angela Lang/CNET
, which are definitely bogus content. But when hackers take over a single account belonging to one of Facebook's biggest data partners, it means a widespread campaign that could lead to thousands of dollars lost and a huge number of credit card numbers stolen.That's essentially what happened in October, when hackers commandeered the personal account of a LiveRamp employee and used it to gain access to the company's Business Manager account -- allowing them to run ads using other people's money. It wasn't the only time something like this has taken place. Hackers have been , knowing that the same tools that marketers use on the social network could be effectively harnessed to scam countless people.In December, for instance, Facebook , accusing it of running a hacking campaign that targeted ad accounts on the social network. Facebook's lawyers alleged in that case that the hackers took over people's ad accounts through malware on browser extensions, and then spent at least $4 million with those accounts' credit cards for fraudulent products like counterfeit goods and male enhancement supplements between 2016 and 2019."Hacking an advertising account may be the perfect cover-up for a threat actor to jump-start a malicious campaign," said Marcin Kleczynski, CEO of cybersecurity company Malwarebytes. "Typically, brand-new accounts go through a period of supervision or greater scrutiny in order to avoid abuse. However, a well-established account already has been approved and trusted."Advertising is essentially Facebook's lifeblood -- it's the reason the social network is free for more than 2.2 billion people. The company is projected to take in because Facebook has gotten incredibly effective at serving up targeted ads to specific audiences. Ads are the most effective way to get your content seen on Facebook, and hackers have taken notice. By compromising a LiveRamp employee's account, the attackers went after one of the social network's most prominent data partners. In LiveRamp's case, the hackers didn't need to target multiple accounts, they just needed one to gain access to the marketing giant's customers on Facebook. LiveRamp said the damage was contained."The instance to which you are referring affected a limited number of LiveRamp customers and associated Ad Accounts," a LiveRamp spokeswoman said in a statement. "Facebook promptly communicated the issue to the affected accounts. Moreover, LiveRamp worked with Facebook to revoke unauthorized access and restore functionality to normal for customers." LiveRamp declined to specify how many of its customers had been affected, or what security measures it requires from its own employees who have this level of access to Facebook ads accounts. Facebook declined to comment. The company confirmed in November that a personal account of an admin for a Business Manager account had been hacked but didn't specify that it was LiveRamp. What is LiveRamp?LiveRamp is a major data partner for Facebook, and a marketing powerhouse that pioneered data onboarding, which is matching data from your real-world actions to your online identity for advertisers.
<iframe id="iframe_youtube" class="optanon-category-3" website
window.CnetFunctions.logWithLabel('%c One Trust ', "IFrame loaded: iframe_youtube with class optanon-category-3");
It's how a company would know, for example, if you'd bought something in its store after also visiting its website. LiveRamp works with more than 300 businesses and data providers, including , , , , and . Facebook is one of and helps advertisers target ads on the social network based on data gathered from offline activities. In 2016, LiveRamp said that it was , which lets advertisers see the connection between their marketing campaigns and what you buy in person.LiveRamp is also listed as a data partner on the page, where advertisers can give LiveRamp special access to help on-board offline data and provide insight on ad campaigns. While LiveRamp doesn't run the ads itself, that level of access as a Facebook-approved partner gives it the ability to do so for its clients. Hackers took advantage of that privilege in October, after hijacking the personal Facebook account of a LiveRamp employee who was an admin for the company's Business Manager account. Using that access, the hackers ran a series of ads on LiveRamp's customer accounts on Facebook. They'd spend thousands of those victims' dollars to trick viewers into buying fake products. One of the ads had been viewed more than 60,000 times and directed visitors to a page designed to steal people's credit card numbers. LiveRamp wouldn't disclose how many of its customers were affected because of its hacked employee, or how much of the victims' money had been spent through the cyberattack. It declined to comment on whether that employee still works for the company but added that it has security requirements for its staffers. "LiveRamp has a number of security requirements in place, and the company will continue to take all appropriate measures to ensure the highest integrity of LiveRamp systems and data, both in its core platforms and partner application integrations," a company spokeswoman said. "Such practices and protocols include, but are not limited to, password controls and multifactor authentication; and conducting security access reviews frequently and ongoing."Security concernsFacebook offers a plethora of security tools to help protect your account from hackers, such as two-factor authentication and login alerts, so you know when someone has accessed your account without permission. It also has a . On the page, Facebook recommends that business managers do security cleanups each quarter to ensure that employees have the proper amount of access.
"The fact that you share the same identity to manage potentially multiple millions of dollars as the one you use to post cat videos is pretty insane."
Marcin Kleczynski, CEO of cybersecurity company Malwarebytes
Facebook only recommends these security measures, and doesn't require them, even for its major data partners like LiveRamp, which hold a high level of privilege on the social network. Malwarebytes' Kleczynski raised concern that, given the stakes, Facebook wasn't requiring business managers to set up accounts that are completely separate from their personal accounts."The fact that you share the same identity to manage potentially multiple millions of dollars as the one you use to post cat videos is pretty insane," he said. He also questioned why Facebook didn't hold its data partners to higher standards, given the temptation for people to indulge in poor security habits such as reusing passwords or Black Label NO not using simple protections such as two-factor authentication.Until the tech giant does, Kleczynski said, cybercriminals would have every incentive to go after personal Facebook accounts belonging to employees of the social network's data partners."If I were a criminal, I would continue to go after Facebook profiles, because these personal profiles could potentially have access to advertising campaigns," he said. "Not only do you have access to a personal account, which is far less lucrative, you have access to the business account, which could be a small start-up or a multimillion-dollar conglomerate."
<div class="comment-container" data-component="sharebar" data-sharebar-options='"title":"Hackers infiltrated a big Facebook data partner to launch scams","description":"Marketing giant LiveRamp has privileged access to advertising accounts on the social network. Hackers took notice.website
<div class="videoPlayer " data-component="videoPlayer" data-video-player-options='"config":"policies":"default":11417438,"tracking":"can_partner_id":"canPartnerID","comscore_id":"3000085","comscore_home":"3000085","comscore_how_to":"3000078","comscore_news":"3000078","comscore_reviews":"3000087","comscore_videos":"3000088","comscore_sense_id":"cnetvideo","comscore_sense_home":"cnethome","comscore_sense_how_to":"cnethowto","comscore_sense_news":"cnetnews","comscore_sense_reviews":"cnetreviews","comscore_sense_videos":"cnetvideo","nielsen_cid":"us-200330","nielsen_vcid":"c07","nielsen_vcid_reviews":"c05","nielsen_vcid_home":"c07","nielsen_vcid_news":"c08","nielsen_vcid_how_to":"c09","nielsen_vcid_videos":"c20","uvpConfig":"mpx_account":"kYEXFC","playlist":["id":"a37a0a18-4f26-499c-92a5-207b809aad16","objectId":"","title":"Itu0027s time to end the digital divide and annoying robocalls, says FCC acting chair","description":"Jessica Rosenworcel tells CNET the FCC is ready to tackle digital redlining, the broadband divide, updated maps and robocalls.","slug":"its-time-to-end-the-digital-divide-and-annoying-robocalls-says-acting-fcc-chair","chapters":"","datePublished":"2021-09-30 website new to stream for October 2021","description":"Curb Your Enthusiasm, Insecure and Dune are the main attractions in the world of streaming this month.","slug":"whats-new-to-stream-for-october-2021","chapters":"","datePublished":"2021-09-30 website shows off a robot, a thermostat and more at its big 2021 event","description":"We talk through all of the announcements from Amazonu0027s big fall event, including the Amazon Glow, the Astro bot and the Show 15.","slug":"amazon-showed-off-a-robot-a-thermostat-and-more-at-its-big-2021-event","chapters":"","datePublished":"2021-09-28 website what the u0027Hey Disneyu0027 assistant sounds like","description":"Disney has its own voice assistant coming to Echo devices at home and in hotels. If you ask Alexa u0022tell me about Hey Disney,u0022 you can get a preview of the voice assistant coming in 2022.","slug":"hear-what-the-hey-disney-assistant-sounds-like","chapters":"","datePublished":"2021-09-29 website Glow: An interactive projector for kids","description":"At Amazonu0027s fall event, the company reimagines its Glow echo device. The new gadget, geared for kids, offers a touch projector for playing games.","slug":"amazon-glow-an-interactive-projector-for-kids","chapters":"","datePublished":"2021-09-28 website Star Wars: Galactic Starcruiser hotel works: Opening date, tickets, more","description":"Bookings for this Disney World hotel begin in late October for its opening on March 1, 2022. We break down all the details of this two-night vacation where you can live inside your own Star Wars adventure.","slug":"how-star-wars-galactic-starcruiser-works-opening-date-tickets-and-more","chapters":"","datePublished":"2021-10-01 website 15:u00a0How to manually update your iPhone right now","description":"We walk you through how to manually update your iPhone to iOS 15 -- and explain why it might be a good idea to wait.","slug":"ios-15-how-to-manually-update-your-iphone-right-now","chapters":"","datePublished":"2021-10-01 website Astro robot is part home helper, part surveillance machine","description":"When you gaze into Astrou0027s cute robot face, Astro gazes into you.","slug":"amazons-astro-robot-is-part-home-helper-part-surveillance-machine","chapters":"","datePublished":"2021-09-29 website 11: Will Microsoft learn from past mistakes?","description":"Here are five lessons we hope Microsoft learned from past Windows launches.","slug":"windows-11-will-microsoft-learn-from-past-mistakes","chapters":"","datePublished":"2021-09-29 website
Location
Occupation