The most popular networks has become a vehicle for the dissemination of malware and spam. Twitter is also not spared.
According to a report by security firm Sophos (pdf), social networks have become a new playground for malicious attacks, reaching a level considered “alarming” in 2009. “Customers spend more time on social networks, communicating sensitive personal information and other valuable ,hackers have found the vein,” explained Sophos consultant Graham Cluley, calling the networks themselves and their users “take more measures to protect organized crime on the Internet.
The threat most famous is called Koobface, virus appeared in 2008 and has continued to increase since. Once installed on a computer knows Koobface take possession of the account of the social network to spread among contacts, spreading links seemingly authentic from friends, are more likely to be clicked. By the same token, the social network serves as an anchor in an attempt to spread spam and steal identities. As was the case for online banks, false identification pages have hatched.
According to Sophos, 57% of users of online social networks interviewed for this report say they are now victims of spam, an increase of 70.6% in one year. Over a third (36%) reported having been victims of computer worms, viruses or other malicious software (+69.8% yoy). A trend confirmed by other similar studies. Especially, 72% of companies surveyed now believe that social networks are a threat to their security. With its 350 million members worldwide, Facebook is a logical and far perceived as more risky (66%), followed by MySpace, Twitter and LinkedIn.
Recognizing these dangers, Facebook has begun to protect its users. Warning messages have been added at every click leads to a site outside. Last month, a partnership with another specialist in IT security, McAfee has been announced to provide antivirus software at an attractive rate.
But those protections have their limits. Sophos is concerned that members of social networks continue to share their personal information inappropriately, exposing their identity and their employer. It recommended more companies to educate their employees on these issues, rather than adopt more radical measures.