Facebook has fixed a critical flaw in the Facebook Messenger for Android messaging app. Natalie Silvanovich of Google’s Project Zero reported the bug to the Facebook bug bounty program. The bug could have allowed a sophisticated attacker logged in on Messenger for Android to simultaneously initiate a call and send an unintended message type to someone logged in on Messenger for Android and another Messenger client (i.e. web browser).

In June, Apple announced iOS 14 updates that, among other changes, would require apps to ask users for permission to collect and share data with developers. As a result, Facebook has just announced it would no longer collect the identifier for advertisers (IDFA) on their own apps on iPhones.

Facebook CEO Mark Zuckerberg announced that the company will allow permanent remote work for many of its existing employees. 

Threat actors are selling more than 309 million Facebook profiles for $623 on dark web sites and hacker forums. 

An Elasticsearch database containing more than 267 million Facebook user IDs, phone numbers, and names was left exposed on the web for anyone to access without a password or any other authentication.

Facebook is strengthening their policy toward misleading manipulated videos that have been identified as "deepfakes."

Facebook said it would proceed with “end-to-end” encryption for its WhatsApp and Messenger services, rejecting a U.S. and Attorney General William P. Barr's plea to allow government access.

Multiple Facebook users have reported that their iPhone cameras are being secretly activated in the background while they are scrolling through their Facebook feed. 

California Attorney General Xavier Becerra filed a petition in the San Francisco Superior Court requesting that the court order Facebook Inc. to comply with an outstanding subpoena and investigative interrogatories issued by the Attorney General on behalf of the People of California.