Facebook messaging poses risks for users: watchdog

November 18, 2010
Facebook's new online messaging service makes users of the social networking site more vulnerable to identity theft by cybercriminals, computer security firm Sophos warned Thursday.

Facebook's new online messaging service makes users of the social networking site more vulnerable to identity theft by cybercriminals, computer security firm Sophos warned Thursday.

It urged users to be aware of the security risks before signing up for Facebook's next-generation online that blends online chat, text messages and other real-time conversation tools with traditional email.

"Users need to realise that these new features increase the attack surface on the platform, and make personal accounts all the more alluring for cybercriminals to break into," said Sophos senior technology consultant Graham Cluley.

"Facebook accounts will now be linked with many more people in the users' social circles -- opening up new opportunities for identity fraudsters to launch attacks," he added in a press statement.

Sophos noted that fraudsters are increasingly using hacked Facebook accounts to send spam messages -- compared with traditional emails -- because they are more likely to be opened by recipients lured to think the messages came from friends.

"Users also need to be aware that Facebook will be storing a complete archive of all their communications with one person. This raises concerns as to how this data could be misused if it fell into the wrong hands," Cluley said.

"With this in mind, it will be critical for Facebook to implement more effective filtering mechanisms to prevent fraudsters from manipulating Facebook users into falling victim to new spams, scams and phishing attacks."

Sophos called on Facebook users to take greater vigilance in securing their accounts, including installing hard-to-crack passwords, updating their computer security systems and being careful about which applications link to their profiles.

Facebook's new was launched on Monday and includes facebook.com email addresses.

Referred to inside the Palo Alto, California-based firm as "Titan," the service will be slowly rolled out in coming months to users.

Approximately 350 million of Facebook's more than 500 million members fire off messages using its existing service, with more than four billion digital missives sent daily, Facebook founder Mark Zuckerberg has said.

Market watchers say that with such a large user base, a free personalised facebook.com email service lays down a powerful challenge to the established email giants -- Microsoft's Hotmail, Yahoo! Mail and Google's Gmail.

Explore further: Facebook fights 'phishing' scam

Related Stories

Facebook fights 'phishing' scam

May 1, 2009

Facebook Thursday said it has blocked a link at the heart of a "phishing" scam being used to dupe members into revealing passwords to accounts at the social networking website.

Recommended for you

Microsoft describes hard-to-mimic authentication gesture

August 1, 2015

Photos. Messages. Bank account codes. And so much more—sit on a person's mobile device, and the question is, how to secure them without having to depend on lengthy password codes of letters and numbers. Vendors promoting ...

Power grid forecasting tool reduces costly errors

July 30, 2015

Accurately forecasting future electricity needs is tricky, with sudden weather changes and other variables impacting projections minute by minute. Errors can have grave repercussions, from blackouts to high market costs. ...

Netherlands bank customers can get vocal on payments

August 1, 2015

Are some people fed up with remembering and using passwords and PINs to make it though the day? Those who have had enough would prefer to do without them. For mobile tasks that involve banking, though, it is obvious that ...

1 comment

Adjust slider to filter visible comments by rank

Display comments: newest first

Aloken
not rated yet Nov 18, 2010
"This raises concerns as to how this data could be misused if it fell into the wrong hands"

That assuming there is such a thing as the 'right hands'

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.