Facebook Security Crisis Could Derail Social Nets - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
IT Leadership // CIO Insights & Innovation
Commentary
11/6/2009
04:32 PM
Alexander Wolfe
Alexander Wolfe
Commentary
Connect Directly
Facebook
Twitter
RSS
E-Mail
50%
50%

Facebook Security Crisis Could Derail Social Nets

There's a security problem on the horizon, which could derail the progress of social networking has made in breaking down the barriers between business and personal Internet usage. (Whether that's a good thing or not is a separate argument.) I'm speaking of the rising tide of fake Facebook messages, phishing threats, and malware.

There's a security problem on the horizon, which could derail the progress of social networking has made in breaking down the barriers between business and personal Internet usage. (Whether that's a good thing or not is a separate argument.) I'm speaking of the rising tide of fake Facebook messages, phishing threats, and malware.And I didn't even mention the constant "friend-request" harassment from people you've never met. (Ba Dum Bum!)

Seriously, though, it's no wonder that many businesses are reluctant to allow employees to surf Facebook and LinkedIn at work. Probably these sites were blocked initially because of their time-wasting potential (and, in the case of YouTube, the unnecessary bandwidth usage). However, the security issues now running rampant on Facebook give enterprises a legitimate reason to demur.

Possibly LinkedIn sees fewer phishing attempts for the same reason that Apple's Mac OS is supposedly safer than Windows. As in, it's not necessarily more inherently impregnable, it's just that it presents a smaller target to bad actors.

Anecdotally, even the casual Facebook user knows what I'm talking about:

  • It's messages appearing to , asking you to click on a video, which turns outs to be a piece of malware.

  • It's phishing attempts which can suck your computer into a botnet.

  • It's fake "update your account" messages, which are also a phishing scam.

    And it's stuff like this "Facebook Password Reset Confirmation. Customer Message." I received recently. (Those two periods add legitimacy to the subject line. Not.) It read:

    Hey alex,

    Because of the measures taken to provide safety to our clients, your password has been changed. You can find your new password in attached document.

    Thanks, Your Facebook.

    I flagged that email as bad quicker than a scalper makes a cop outside Yankee Stadium (to use a timely analogy). It wasn't just the "Hey" or lower-case "a" in Alex, which is not my Facebook name anyway. I thought the "Thanks, Your Facebook" at the close was a nice touch, though of course the proper response is, no, your Facebook.

    Seems to me that such security issues are more serious issue for social-networking sites than anyone has yet acknowledged. I believe the patina of friendly interaction, and the good-natured communication which Facebook inherently invites, has raised less of a reaction than if similar problems had occurred on a "regular" site.

    Think what Amazon would do if its customers were constantly being bombarded with attempts to steal their credit card numbers.

    Which is not to say that Facebook isn't working hard to stanch this stuff. It is. (Check out Facebook's blog as well as its developer wiki.)

    However, Facebook is fighting a battle which it appears ill-equipped to win. That's because the security problems facing Facebook aren't due to lapses by the site so much as their occur precisely because of its very nature. So, if you corrected the problem by locking down Facebook, it wouldn't be Facebook.

    Because, hey, if you can't trust your friends, who can you trust?

    Follow me on Twitter: (@awolfe58)

    What's your take? Let me know, by leaving a comment below or e-mailing me directly at [email protected]. Like this blog? Subscribe to its RSS feed: (here)

     My videos on ( YouTube)

     Facebook 

      LinkedIn

    Alex Wolfe is editor-in-chief of InformationWeek.com.

    We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
    Comment  | 
    Print  | 
    More Insights
  • News
    IT Employment Trending Up; Data, Cybersecurity Skills in Demand
    Jessica Davis, Senior Editor, Enterprise Apps,  11/11/2020
    Slideshows
    The Ever-Expanding List of C-Level Technology Positions
    Cynthia Harvey, Freelance Journalist, InformationWeek,  11/10/2020
    Commentary
    How to Approach Your Mission-Critical Big Data Strategy
    Mary E. Shacklett, Mary E. Shacklett,  11/17/2020
    White Papers
    Register for InformationWeek Newsletters
    Video
    Current Issue
    Why Chatbots Are So Popular Right Now
    In this IT Trend Report, you will learn more about why chatbots are gaining traction within businesses, particularly while a pandemic is impacting the world.
    Slideshows
    Flash Poll