Facebook messaging poses risks for users: watchdog

November 18, 2010
Facebook's new online messaging service makes users of the social networking site more vulnerable to identity theft by cybercriminals, computer security firm Sophos warned Thursday.

Facebook's new online messaging service makes users of the social networking site more vulnerable to identity theft by cybercriminals, computer security firm Sophos warned Thursday.

It urged users to be aware of the security risks before signing up for Facebook's next-generation online that blends online chat, text messages and other real-time conversation tools with traditional email.

"Users need to realise that these new features increase the attack surface on the platform, and make personal accounts all the more alluring for cybercriminals to break into," said Sophos senior technology consultant Graham Cluley.

"Facebook accounts will now be linked with many more people in the users' social circles -- opening up new opportunities for identity fraudsters to launch attacks," he added in a press statement.

Sophos noted that fraudsters are increasingly using hacked Facebook accounts to send spam messages -- compared with traditional emails -- because they are more likely to be opened by recipients lured to think the messages came from friends.

"Users also need to be aware that Facebook will be storing a complete archive of all their communications with one person. This raises concerns as to how this data could be misused if it fell into the wrong hands," Cluley said.

"With this in mind, it will be critical for Facebook to implement more effective filtering mechanisms to prevent fraudsters from manipulating Facebook users into falling victim to new spams, scams and phishing attacks."

Sophos called on Facebook users to take greater vigilance in securing their accounts, including installing hard-to-crack passwords, updating their computer security systems and being careful about which applications link to their profiles.

Facebook's new was launched on Monday and includes facebook.com email addresses.

Referred to inside the Palo Alto, California-based firm as "Titan," the service will be slowly rolled out in coming months to users.

Approximately 350 million of Facebook's more than 500 million members fire off messages using its existing service, with more than four billion digital missives sent daily, Facebook founder Mark Zuckerberg has said.

Market watchers say that with such a large user base, a free personalised facebook.com email service lays down a powerful challenge to the established email giants -- Microsoft's Hotmail, Yahoo! Mail and Google's Gmail.

Explore further: Facebook fights 'phishing' scam

Related Stories

Facebook fights 'phishing' scam

May 1, 2009

Facebook Thursday said it has blocked a link at the heart of a "phishing" scam being used to dupe members into revealing passwords to accounts at the social networking website.

Recommended for you

Interactive tool lifts veil on the cost of nuclear energy

August 24, 2015

Despite the ever-changing landscape of energy economics, subject to the influence of new technologies and geopolitics, a new tool promises to root discussions about the cost of nuclear energy in hard evidence rather than ...

Smart home heating and cooling

August 28, 2015

Smart temperature-control devices—such as thermostats that learn and adjust to pre-programmed temperatures—are poised to increase comfort and save energy in homes.

1 comment

Adjust slider to filter visible comments by rank

Display comments: newest first

Aloken
not rated yet Nov 18, 2010
"This raises concerns as to how this data could be misused if it fell into the wrong hands"

That assuming there is such a thing as the 'right hands'

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.