January 20, 2012
Tending to the crops on your virtual farm, finding out who views your profile and sharing your favourite movie trailers may seem like harmless ways to use social networks but oblivious users are accepting application requests without considering who they
are allowing to access their personal data.
Having ‘apps’ connected to your Facebook, LinkedIn or Twitter profiles provides an open-door for the third party behind the app to access your profile and all of your personal data within.
UKFast technical director Neil Lathwood explained the risks that this security flaw poses for social networkers: “Having all of these apps to entertain us is great, but many people do not realise that by using these apps they are effectively inviting people to use their personal data in whichever way they want. We really need to start considering the consequences of having all of our data readily available to unknown third parties.
“Facebook acts as a narration of our lives and with the introduction of the new Timeline feature, more people are filling the gaps in their profiles, adding illnesses, significant events and employment details to name a few. This information is incredibly valuable to identity thieves and cybercriminals.”
As revealed by UKFast’s security experts last year, the information that we share on social sites provides cybercriminals with the clues that they need to guess passwords and break into online accounts – from social media to online banking.
Lathwood continued: “With Facebook predicted to pass the 1 billion users mark this August, the site is a prime target for criminals to mine data from. Users must be more savvy with whom they are sharing their personal data or risk cybercriminals accessing more than just their Facebook or Twitter accounts.”
Facebook launches its latest innovation this week – Timeline Apps – which has caused further security concerns. The permissions protocol linked to the apps, ‘frictionless sharing’ says that apps only need initial approval to post on your timeline and profile. This means that the app can continue to make posts on your behalf without asking for permission.
UKFast has issued the warnings as part of the build up to European Privacy and Data Protection Day on January 27, an annual event designed to raise awareness of data protection and online security.
Lathwood said: “Data Protection Day is the perfect time to raise awareness of the risks that we inadvertently take online. We can monitor the apps that have access to our profiles using websites such as http://mypermissions.org/ which take you directly to the permissions page of the site where you can manage these apps.”
UKFast is one of Europe’s fastest-growing technical companies as ranked by Deloitte and the Sunday Times Tech Track. In the last year CEO Lawrence Jones has been named North West Entrepreneur of the Year, while his team has collected the Greater Manchester Award for Innovation. In addition to being listed as one of The Sunday Times best companies to work for, UKFast also won the UK IT Awards Employer of the Year in 2010.
Previous accolades include being named the ISPA UK’s Best Hosting Provider four years consecutively. UKFast has over 400,000 web domains on its network and over 4,000 clients across all industries. Clients include Virgin, Microsoft and UKTV. UKFast is a member of the Cloud Industry Forum.
For more information about UKFast visit: http://www.ukfast.co.uk