100 million Facebook User Details Compromised 

ESET Provide Social Protection Tips as Personal information of 100 million Facebook User Leaked to the Web

Personal information of roughly 100 million out of the half a billion Facebook users have been recently compromised, their private information leaked to the web. This is not the first time social networks have been targeted....and ESET warn it won't be the last!

ESET's senior research fellow David Harley continuously comments on cases of SPAM and SCAM exploiting many applications used on Facebook.

With regard to Facebook security policy, Harley notes: "It's clearly not the company's demonstrable commitment to taking exhaustive measures to keep its users private data secure. Facebook's reaction that ‘no private data has been compromised' is instructive. Strictly speaking, FB is correct: the data that has leaked is not private, because it was not protected by the stricter privacy settings available on FB," continues ESET's researcher based in London.

Harley stresses that the ship has already sailed and that even if users change their privacy settings now, their data is already in the public domain with literally thousands of people having already downloaded it.

Just at the weekend, IrishDev.com user Barry Alistair noted an Instant Message popping up from his friend. It said "Hey Barry, http://topicchallenge.info < - is this right?? I scored 102! Try it plz, plz I wanna know what you get!!" (NOTE - we don't advise you visiting this link!)

Smelling a rat, of course Barry never clicked the link, which is just as well, because within minutes his friend had sent a status update with a warning.

In the dialogue that followed:
Barry Said: Wow, I got one too - didn't click it though. I've never seen social attack using IM like that before! Anyone click it? and if so, what happened?

His friend replied: Me either. I feel so violated.

Barry Asked: Did you click a similar link today?

His friend said: Of course not! You should know better, Barry.

So Barry asked again: How do you think it happened?

His friend replied: Nit quite sure. Its an impressive attack.

Barry continued: I wondered if the entry point was that you had clicked an invite sent by someone else - this is the most common. See this article http://irishdev.com/Home/News/822-Facebook-Phishers-Say-Thanks.html (this link is safe to open!)

And lastly, his friend concluded: Nope. I literally just had facebook sitting open and did nothing but scroll through the updates.

This was not the first security breach on Facebook this month. Dramatic was the spread of scam baits the likes of "The truth about Coca Cola" and "Teacher nearly killed this boy video." Many of these rogue applications and social network worms are used either as a marketing tool or by outright cyber-criminals looking to scam the incautious users. "They have continued to plague Facebook users, spamming from their accounts and worming their unwanted links across the social network," says Harley. The user does not even have to realize having used the application.

Golden Rules

After Facebook leak, ESET has prepared a fresh list of pointers on how to stay secure on social networks.

• Adjust Facebook privacy settings: Allow only your most trusted friends to see your full profile, use a cut-down profile for the others. In Facebook settings, you can choose what you want to constrain: your status updates, wall posts, personal information or pictures. Occasionally, Facebook changes privacy settings, always check whether you approve them. If you find out that a person among your friends is not trustworthy - remove them.

• Avoid using forwarded links: You would never open a suspicious attachment in your e-mail - not even from your friend. You should exercise the same restrain on Facebook. The message can originate from a hacker or cybercriminal, not your friend.

• Accept as friends only people that you know: Users should avoid accepting friends that they do not know and in no case they should allow them to see their full profile. You always have to keep in mind what you share with whom.

• The data is out there forever: Do not assume that when you delete a photo or the whole social network account that you deleted all the data forever. Your pictures and information might be already saved on someone's computer. Always think twice about which pictures and details you put on the Internet.

• Be cautious when you install applications: Many applications of third parties might be the work of cyber-criminals and fall in the unwanted spam category. You do not want to share your private details with these entities.

• Think before you click: Before you click on the "like" button, think. Your friends can be infected with the clickjacking worm. It starts with a "like" button and ends with you spamming others. If you want to remove this worm, you need to remove the infected message from your status, wall and check your application settings for suspicious applications.

Visit Reflex - ESET Distributor in Ireland

The 3rd Irish Software Show 2011 - Date Announced Click Here

People reading this article also read....

More ESET News on IrishDev.com

More Facebook News on IrishDev.com

More Virus News on IrishDev.com

Get Instant Updates....

Join IrishDev.com on Facebook and Twitter