RSS Alerts

Share

More services

Related Stories

  • Comment: It’s Time for Smartphone Security
    As the mobile market grows, so does mobile malware. Don DeBolt, director of threat research at internet security company Total Defense, discusses how IT practitioners and company employees can best stay safe by protecting themselves from mobile hacks, privacy concerns and more in a day and age when mobile malware is on the rise
  • Comment: Privacy, Trust and Identity in the Cloud
    The cloud provides many services that are used by individuals to network, and to buy services. ISACA’s Mike Small explores how this has created new challenges relating to identity, privacy and trust
  • A Rotting Security Apple?
    Vendors, analysts, and commentators alike have long predicted a surge in malware affecting Apple’s products. Yet, until recently, these prognostications have failed to materialize. Drew Amorosi examines recent malware threats to Apple’s OS X operating system to find out if this is an anomaly, or a sign of things to come
  • The Gods of Phishing
    Some phishing attempts are truly ethereal – near flawless representations of official communications. Others, however, are mere mortals. And then there’s the absolutely absurd. Esther Shein visits the pantheon of scammer emails
  • Get Safe Online Week starts rolling
    This year's Get Safe Online Week, where IT security organisations come together to encourage the less experienced to raise their online security game, has got off to a flying start with Tony Neate, GSO's managing director, talking to the media.

Top 5 Stories

News

Infosecurity Europe: Business social networkers can “learn a lot from kids”

29 April 2009

Chris Boyd, director of malware research at FaceTime Security Labs, warned against the dangers of social networking at the talk ‘Social networking pirates: Batten down the hatches, Cap’n Jack is coming’ at Infosecurity Europe.

Boyd noted the rise of business-focused Web 2.0 sites such as Present.ly, LinkedIn and Yammer, observing that with such sites “You’re encouraged to tell everything about yourself…You’re encouraged to tell the world about your company.”

Boyd said the popularity for employees to use such sites meant that businesses were walking into unchartered territory” and pointed out the danger that “a social engineer can quickly ascertain who you work with.”

He added that “Most MySpace profiles are set to ‘private’ – we could learn a lot from these kids.”

Boyd gave several tips for moderating social networking within an organisation and mitigating against hacks.

-    Put someone in charge of social networking in the workplace
-    Enforce a set of rules with regards to what not to put on sites like Yammer.
-    Keep real world friends and associates out of your top friends on social networking sites
-    Avoid the ‘life story on LinkedIn’ approach
-    Delete old Twitter messages

Commenting on the last point, Boyd said “There are so many random messages, you can, over time, build a complete picture of who this person is.”

If messages are deleted, it’s “a lot harder for someone to mine the ‘stream-of-consciousness’ data” for information.
 

This article is featured in:
Identity and Access Management  • Internet and Network Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012