The Enterprise Security Supersite
NewsFactor Network Sites:   NewsFactor.com Security CRM Business Sci-Tech Newsletters XML/RSS Feed  
   
Home Network Security Viruses & Malware Spam & Hackers Security Products More Topics...
Data Security
Average Rating:
Rate this article:  
Facebook Hijacking Points To Social-Networking Holes Facebook Hijacking Points To Social-Networking Holes
By Carl Weinschenk
November 10, 2009 2:19PM

Bookmark and Share
The nontechnical hijacking of nearly 300 unadministered Facebook groups illustrates the security issues facing social-networking sites. Dave Amsler of Foreground Security said social-networking sites like Facebook have major security issues. Facebook said the takeover of the groups was not a hijacking and no confidential information was exposed.
 

Related Topics

Facebook
Hijacking
Security
Social Networking

Latest News

Internet Crooks Dabble in Check Fraud
Android, Apple Mobile Apps Leak Data
Your Smartphone App Is Watching You
Cyber Mastermind Found in Slovenia
Safari 5.0.1 Offers Extensions Gallery

The takeover of administration rights to a large number of Facebook groups by an organization that calls itself Control Your Info is just one example of the many security Relevant Products/Services issues facing social-networking Relevant Products/Services sites in general and Facebook in particular, according to experts.

Indeed, this nontechnical exploit can be called a benign example of what is at risk if better controls aren't put in place. Control Your Info hijacked almost 300 groups by simply taking over unadministered groups. Dave Amsler, the cofounder and CIO of Foreground Security, said the illegitimate administrators have access to profile information, e-mail addresses and other data Relevant Products/Services that members have provided. He pointed out that credit-card numbers aren't involved.

Hijacker Message

Control Your Info posted this message at those groups:

"Hello, we hereby announce that we have officially hijacked your Facebook group.

"This means we control a certain part of the information about you on Facebook. If we wanted we could make you appear in a bad way which could damage your image severly [sic]."

The group didn't respond to a request for an interview sent to the e-mail address at its web site.

Facebook's press-relations department e-mailed a statement which read in part that "there has been no hacking and there is no confidential information at risk. The groups in question have been abandoned by their previous owners, which means any group member has the option to make themselves an administrator in order to continue communication to the group. Group administrators have no access to private user information and group members can leave a group at any time."

Bigger Problems

The situation is evidence of significant vulnerabilities in Facebook, Amsler said. "The social-networking sites -- Facebook being the most important -- have major security issues," he added. "No one is bothering to secure anything."

He said the company seemed unconcerned when contacted. "We've reported major findings to them and their response is, 'Yeah, we know about it. There is not a whole lot we can do about it.'"

Amsler added that he agrees with the stated aims of Control Your Info -- to call attention to what critics say is an insecure Facebook environment -- but thinks the group acted unethically in hijacking groups. Still, he believes that Facebook probably will make the relatively easy, nontechnical changes necessary to prevent the hijackings. (continued...)

1  |  2  |  Next Page >

 

Tell Us What You Think
Comment:

Name:

Also Visit:


Advertisement


 Data Security
1.   Internet Crooks Dabble in Check Fraud
2.   Android, Apple Mobile Apps Leak Data
3.   Your Smartphone App Is Watching You
4.   Cyber Mastermind Found in Slovenia
5.   Safari 5.0.1 Offers Extensions Gallery


advertisement
Internet Crooks Dabble in Check FraudInternet Crooks Dabble in Check Fraud
Low-tech crime gets high-tech twist.
Average Rating:
Keeping Your Computer and Data SafeKeeping Your Computer and Data Safe
Common-sense security precautions.
Average Rating:
Outlook Connects To Social NetworksOutlook Connects To Social Networks
Multiple Office versions available.
Average Rating:
Product Information and Resources for Technology You Can Use To Boost Your Business

CRM Systems

  Experience CRM—and Business—Success today with Salesforce.com.
  2 million CRM success stories and counting...

Contact Centers

  Enable a multi-channel customer support experience with Parature
  White Paper Social Media and the Customer Experience

Customer Data

  White Paper Social Media and the Customer Experience

Customer Service

  White Paper How Do You Avoid the 5 Big Mistakes Customer Service Teams Make?

Enterprise Software

  See what the Sales Cloud can do for your company...

Hardware

  See how these entrepreneurs use Dell technology to solve business problems

Small Business

  SMB Learning Center: Take your business where you want to go.
  Which Dell Laptop, Desktop, Workstation or Server is right for your business?

Navigation
Enterprise Security Today
Home/Top News | Network Security | Viruses & Malware | Spam & Hackers | Security Products | Mobile Security | Disaster Recovery | Windows Security
Data Security | EST Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | Free Whitepapers | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2010 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.