Social Network Security


RockYou Agrees to $250K FTC Fine Over Loss Of 32m Passwords

The Federal Trade Commission announced on Tuesday that it had reached a settlement with RockYou over violations of the Children’s Online Privacy Protection Act (COPPA) after the Web site allowed hackers to gain access to the personal information of its 32 million members.

After Twitter Hack, NY Times Debates Social Network Security

In the wake of a high profile (though harmless) cross site scripting attack launched from Twitter.com’s Web site, the New York Times is sponsoring a debate about the security of online social networks that offers some harsh criticism of the micro blogging site. 


Senior engineers at Facebook responsible for SRE (site reliability
engineering) challenged Facebook employees to try to compromise him and
gain access to Facebook’s administrative system via information obtained
from him. They succeeded. Read the full article. [TechCrunch]

Shifty sorts have created a new worm which spread rapidly on Facebook. The malware, for now at least, does nothing more malicious than
posting a message on an infected user’s Facebook wall that point to a
site called fbhole.com. Nonetheless, the speed of its spread on the
social networking site has net security experts worried. Read the full article. [The Register]

Facebook has identified the hacker named Kirllos who tried to sell 1.5 million Facebook accounts recently in underground hacking forums. According to the investigators at the social networking site, he’s guilty of both hacking and hyperbole. Read the full article. [Computerworld]

A now-closed Facebook exploit took advantage of cross site scripting to inject malicious code into Yelp. Normally such an attack wouldn’t have particularly broad implications for Facebook users, but Yelp is one of the three sites that have been deemed fit for Facebook’s highly controversial Instant Personalization feature. Read the full article. [TechCrunch]

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.