SMB - Experts hammer Web 2.0 security

Security experts fear that social networking sites like Facebook and Linkedln provide both a delivery vehicle for malware and the info to create targeted attacks

Even as social networking darling Facebook prepares a version of its online networking application aimed specifically at enterprise users, legions of security experts are getting behind the idea that the sites represent a serious threat to businesses and other organizations.

From the ability of malware, adware, and spam distributors to use the sites as delivery vehicles for their latest work to the opportunity for cyber-criminals to craft extremely targeted attacks using information garnered from individual profiles posted on pages of Web 2.0 properties, social networking is rapidly becoming a serious pain point, researchers maintain.

Recent examples of malware and adware distribution schemes carried out on the existing services operated by Facebook and MySpace represent merely the tip of the iceberg, they said, with many attackers likely already hard at work creating new methods for duping users of the sites into exposing themselves and the companies that they work for.

"With traditional attacks it was mostly about short-term bets by the attackers, but use of social networking is giving criminals the ability to start running long cons on people through which they can play on people's sympathies to distribute malware or infiltrate an organization to hold data for ransom," said Michael Whitehurst, vice president of global support with Marshal, a maker of Web and e-mail filtering technologies.

"If used correctly social networking can be very effective. Being able to connect with people without going through all the traditional channels has a lot of benefit," he said. "But with the potential for data leakage or targeted attacks, companies are really going to need to police usage and actively scan content coming in and out of these applications."

Other experts pointed to a recent attack carried out over MySpace through which a page on the site was altered to look as if someone visiting the URL was being prompted by their PC to install a Windows update that would instead direct them to a malware-infected Web site once someone clicked on it.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Matt Hines

InfoWorld

Comments

Comments are now closed.

Latest News Articles

Most Popular Articles

Follow Us

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Resources

Best Deals on GoodGearGuide

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?