Taking down coordinated adversarial networks to counter global threats and improve our defenses.

Security at Meta

As the world becomes more interconnected, threat actors target people across the internet. Our goal is to detect and counter them, while constantly improving our defenses. Using what we call a Network Disruption approach, we take down each adversarial network of accounts and Pages as a whole, rather than removing them piecemeal. This makes it harder for malicious groups to come back and target people who use our apps.

Since 2017, we’ve reported takedowns of more than 200 covert influence operations, cyber espionage, mass reporting and brigading networks. We know bad actors are persistent, but so are we, and we’re staying vigilant to help protect people globally.

Security threats

We know that no single company can solve various global threats alone. We share findings about threats we detect with our industry peers and security researchers to help our entire defender community better understand and counter internet-wide threats, like the ones below.


Coordinated efforts to manipulate public debate for a strategic goal, in which fake accounts are central to such covert influence operations.


Coordinated efforts to harass people in attempt to intimidate and silence them, often through repetitive direct messages or mass-commenting on their posts.


Covert efforts to target people to collect intelligence and/or compromise their devices and online accounts for a strategic goal.


Coordinated efforts to abuse our reporting systems to get accounts or content incorrectly taken down, typically with the intent of silencing people.

Learn more about Meta’s threat disruptions

Meta’s public threat reports include security research into the takedowns of adversarial networks, threat indicators and other actions we’ve taken to counter malicious groups.


This list provides a deep dive into our work to detect and counter security threats on our platform, broken down by year. We will continue to update this list regularly as we publish new threat disruption reports.