Seven security risks as loss of privacy hardest hit SNS-SNS, privacy leak-IT industry

Seven security risks as loss of privacy hardest hit SNS-SNS

, privacy leak-IT industry

3 30, Rising Releases " Privacy and social networking sites users (SNS) Security Report (2009), "a very popular social networking site for the current user security warnings. Report points out that users of personal data in the social networking site, after registration, it is susceptible to Mobile No. leak, MSN and mail account passwords stolen and other seven security risks, and use various means to defraud users of personal data for profit, social networking sites have become an important source of profit.

"I've never been to any dating site, do not play at this, and today received a female friend suddenly Electronic E-mail, the title says "I want to tell you a clear relationship," the message in the link point of the emergence of a page, directly asked me to complete the MSN account and password, how is this going on ah? Is a virus it? "Mr Cheung to Beijing netizens Rising customer service center engineer asked. According to Rising security engineers to verify, with the social networking site which may be fraudulent acts of personal privacy information.

Offense and defense laboratories and Rising Rising Internet Customer Service Center Statistics study shows that domestic users of personal privacy leak situation has reached a serious level, but the main reason for this situation has been from the "small-scale theft of Trojan viruses," gradually transformed into commercial companies with the purpose to collect, users of these commercial companies induced leakage privacy, and then records user privacy and profit, and some social networking sites are especially prominent.

2006 9 months, one called "Chinese Connection" the rogue site is media exposure, from opening a "gangster-style social networking site development," the prelude; period, a number of rogue Social networking sites were exposed by the media, the most recent case is , March 2009, Online games "Three blood" gangster-type with the promotion because the investigation by the Ministry of Culture. To carry out these rogue-style promotion, firms must first obtain a user's MSN account, mail and other private information, but as a social networking site is the "personal information provider" role. Today search keywords "Chinese Yuan rogue", are still able to find relevant information and hundreds of thousands of users post.

Rising security personnel under the analysis of social networking sites now exist seven major security risks, including:

1, used to lure, mislead, etc., to encourage users to complete the MSN and QQ account number, password.

2, reward points through the game to give priority to enjoy the new features, etc., to encourage users to fill out their own truth. Website to provide security protection, but there are many problems.

3, to encourage Internet users to Web site accounts and cellphone, cell phone database to establish the existence of the risk of privacy disclosure.

4, the site privacy design, complete with "convenient" for the stance, ignoring the user's "security risk."

5, a large number of sites using ajax technology, it is prone to XSS and CSRF attacks, so that the user computer poisoning, theft and other online banking accounts.

6, frequent harassment of registered users of MSN, e-mail contact, luring its own Web site registration, and even private information directly to cheat and push ads.

7, the user in the game, the exchange process is easy to disclose their real situation, it may give hackers fraud convenience.

According to industry estimates, in large and medium cities, 15 to 30-year-old Internet users, 95% or more will register one or a few social networking sites, so it brings security risks, the risk of personal privacy very seriously. In the Rising's test, using a friend's MSN has 30 accounts registered a social networking site, log and found that friends of the 16 completed their MSN account password, the buddy list is stored in the site Server On. Once the disclosure of such confidential information, serious consequences.

According to foreign media reports, now includes myspace account, facebook account information such as social networking sites abroad, can be bought on the black market, the price of a single account under the active level, sophistication from a few cents to several dollars. According to the survey, 54% of the parents of the EU member states worried about their children being so Network Violence. Under the coordination of the European Commission, including Youtube, Yahoo (Europe), MSN, Myspace and Facebook social networking sites, including 17 in Luxembourg has signed an agreement to protect the EU minors.

Enhance self-protection in addition to Internet users, the Rising security experts suggested that, given the current unfavorable conditions of privacy protection, the relevant state departments should introduce specific laws, regulations, by law or industry standards on the use of privacy for profit to investigate and deal with corporate behavior. Meanwhile, the social networking industry should actively engage in self-discipline, can not only see the short-term against the interests of user privacy, and to maintain long-term health sector development.

Appendix: For the privacy issue, security experts suggest that in general users Rising to take the following measures:

1, to strictly prevent worm attack SNS website. For the average user can install the free "Rising Kaka Internet Assistant 6.0", using one of the vulnerability scanning capabilities, to make up for vulnerabilities; installed Rising antivirus Software , In which cloud-based security systems "linked to horse anti-modules", you can use behavior analysis, blocking SNS site Daohao Trojans, worms and so on.

2, the social networking site before completing any personal data, should understand the risks it contains. Try not to fill in too much detail in the social networking site, personal information. In particular, their income level, marital status, whether you are buying stocks, funds, personal privacy, it is easy to be caring people use for business promotion, and fraud.

3, Do not add MSN friends, QQ friends, SNS website friends. With the development of SNS website, which often focus on personal data, the trend of integration, for example, once you add a person to MSN friends, he in many SNS sites will automatically become your friends. Thus, even a very strange person, you may know the most intimate personal information. The security risks that are self-evident.

4, the use of SNS site, make full use of its security mechanisms. For example, by SNS website to invite friends, if you entered your MSN account password, email account password, after you have finished using the function to immediately change your password. Thus, a number of security risks can be circumvented

POST COMMENT

Coca-cola Factory Named By Many Security Incidents Has Denied - Coca-cola, Coca-cola Pay Talks - Wholesale Security Digicam - You Might Be Obtaining Tricked Security Company Security Guards and Security Officers The Securities Of A Financial Dealer Event Security Sending Your Parcels to Liverpool with Speed and Security Fence Companies Providing Residential and Commercial Security Giants hint security Deon Grant, hold on Defensive Overhaul Ensuring Security In Public Libraries Trustworthiness and Security Facades of Offshore Hosting Make It Popular Worldwide OPSEC- A History Of The Security Underdog The Basics of Security Alarms