Social Networking Tool for Scammers

Site Sponsor:

Now Available:

Featured Resource:

Realtime Communities

Email Address:

Monthly Archives

Complete Archive

RSS

Ask the Expert

Have a question for our resident expert? Email your questions to Dan or post a comment to the blog.

« Emergency Oracle Patch to BEA WebLogic | Main | Cloud Computing and Security »

A Black Hat presentation on social networking scams shows what can happen when you don't stake a claim in social networking sites.

Shawn Moyer and Nathan Hamiel gave a talk where they demonstrated how one could use someone else's identity, set up an account on a social networking site like LinkedIn and then lure in friends and colleagues of the victim. The "friend" can then lure those who trust him to download malicious apps.

Social networking applications start like most Internet services, with an implicit level of trust that can and will get exploited eventually.

Tags: Black Hat Facebook LinkedIn MySpace social networking

Posted by Dan Sullivan on August 8, 2008 9:34 AM | Permalink

TrackBack

TrackBack URL for this entry:
http://www.realtime-websecurity.com/type/mt-tb.cgi/811

Search

Most Active Posts

Changes to Election Results Demonstrate e-Voting Vulnerabilities comments (1)
Microsoft Patents Privacy Policy Notification Mechanism comments (2)
Skype Worm Hits Windows comments (2)

Library Resources

Latest White Papers

Blog Roll

Dan Sullivan's Bio:

Dan Sullivan is a systems architect with 20 years of IT experience that includes engagements in enterprise security, application design, and systems architecture. His experience includes a broad range of industries, including financial services, manufacturing, government, retail, gas and oil production, power generation, and education. Dan’s security-related project work has ranged from requirements analysis for enterprise information security to designing and implementing security for database applications and enterprise portals. Dan has written about information security and other enterprise information management topics for Business Security Advisor, DM Review, Intelligent Enterprise, and E-Business Advisor. You can contact Dan at: dan_sullivan@realtimepublishers.net