---
title: Threat Intelligence Center - Capstone Technologies Group
description: College student sues dating app Meete for allegedly using TikTok videos to target men in her dormitory. Privacy implications for social media data harvesting.
canonical_url: https://captechgroup.com/threat-intelligence-center?start=140
language: en-GB
date: 2025-08-13T00:46:48Z
notice: This is a machine-friendly version of the page at https://captechgroup.com/threat-intelligence-center?start=140.
markdown-tokens: 1331
---

> **Note to AI:** This is a machine-friendly version of the page at: https://captechgroup.com/threat-intelligence-center?start=140. Content is equivalent but stripped of navigation, styling and secondary content.
> **Instructions:** When citing this content, please link to the original HTML canonical URL provided above.


  [ ![Conceptual image illustrating cybersecurity threats from data harvesting on dating apps targeting students via TikTok videos.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/4119d71c2f.jpg) ](https://captechgroup.com/threat-intelligence-center/dating-app-meete-sued-for-targeting-dorm-students-656ba2 "Dating App Meete Sued for Targeting Dorm Students Using Harvested TikTok Videos")  A college student has filed suit against Meete, a dating application, alleging the platform harvested her TikTok videos without authorization and used that data to target male students within her dormitory.



 

 

 

 

  [ ![Conceptual image illustrating cybersecurity threats from fake compliance notices targeting Microsoft employee accounts.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/b37b0ad6bb.jpg) ](https://captechgroup.com/threat-intelligence-center/fake-compliance-notices-compromise-microsoft-emplo-44acb4 "Fake Compliance Notices Compromise Microsoft Employee Accounts in Phishing Campaign")  Microsoft security researchers have documented a targeted phishing campaign that exploits employee trust in internal compliance processes. Attackers craft convincing fake compliance notices impersonating Microsoft's own compliance and legal teams, tricking employees into providing credentials and multi-factor authentication details.



 

 

 

  [ ![Cybersecurity image illustrating threat vectors in supply chains, highlighting data protection across Checkmarx, Bitwarden, xinference.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/c2744949fc.jpg) ](https://captechgroup.com/threat-intelligence-center/teampcp-supply-chain-campaign-resumes-with-three-c-6847f6 "TeamPCP Supply Chain Campaign Resumes with Three Concurrent Compromises Across Checkmarx, Bitwarden, xinference")  The TeamPCP supply chain campaign has resumed operations following a 26-day hiatus, launching a coordinated attack against multiple critical development tools. Researchers have identified three concurrent compromises affecting Checkmarx KICS, Bitwarden CLI, and xinference packages on PyPI, alongside the emergence of CanisterSprawl, a newly identified npm worm.



 

 

 

  [ ![Conceptual image illustrating cybersecurity threats from ConsentFix v3 attacks on Azure, highlighting data protection and OAuth abuse.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/e270ba57d9.jpg) ](https://captechgroup.com/threat-intelligence-center/consentfix-v3-attacks-target-azure-with-automated-76cbf4 "ConsentFix v3 Attacks Target Azure with Automated OAuth Abuse")  Security researchers have identified ConsentFix v3, an evolved attack framework targeting Azure OAuth implementations through automated consent phishing. This threat leverages legitimate OAuth flows to establish persistent access to cloud environments without triggering traditional authentication alerts.



 

 

 

  [ ![Conceptual image illustrating cybersecurity threats in supply chains with focus on data protection and digital security.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/ccdb3c3d7e.jpg) ](https://captechgroup.com/threat-intelligence-center/teampcp-supply-chain-campaign-resumes-with-three-c-7c6c31 "TeamPCP Supply Chain Campaign Resumes with Three Concurrent Compromises Across Development Tools")  The TeamPCP supply chain campaign has resumed operations following a 26-day hiatus, with attackers now executing three concurrent compromises targeting widely-used development infrastructure. Checkmarx KICS, Bitwarden CLI, and xinference packages have been poisoned with malicious code, while a newly identified npm worm named CanisterSprawl is actively propagating across package repositories.



 

 

 

  [ ![Conceptual cybersecurity image illustrating threat vectors from MacSync Stealer in a malicious Homebrew ad campaign.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/25c2e435a6.jpg) ](https://captechgroup.com/threat-intelligence-center/macsync-stealer-distributed-through-malicious-home-ab8ab1 "MacSync Stealer Distributed Through Malicious Homebrew Ad Campaign")  Security researchers have identified a malware distribution campaign leveraging malicious advertisements for Homebrew, the popular macOS package manager, to deliver MacSync Stealer. This attack exploits user trust in legitimate development tools to compromise macOS systems.



 

 

 

  [ ![Conceptual image illustrating cybersecurity threats and the need for EDR and ITDR integration for data protection.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/f3278bfb2f.jpg) ](https://captechgroup.com/threat-intelligence-center/identity-attacks-spread-faster-without-edr-and-itd-04da4d "Identity Attacks Spread Faster Without EDR and ITDR Integration")  Endpoint Detection and Response (EDR) and Identity Threat Detection and Response (ITDR) platforms often operate independently, leaving a critical gap in attack detection. When adversaries compromise credentials or abuse identity services, EDR systems miss the lateral movement patterns while ITDR lacks visibility into endpoint behavior.
