Firms fear social networks threat

Powered by SC Magazine
 

Two-thirds of systems administrators are worried that employees are sharing too much information on social networking sites and threatening the security of corporate systems, according to new research from Sophos.

The security firm found that a quarter of companies have fallen victim to spam, phishing or malware attacks via these sites.

Graham Cluley, senior technology consultant at Sophos, pointed out that using the corporate contact details available on LinkedIn, for example, a phishing attack could easily be set up to mine intranet log-in or user account details from new employees.

"If your users are sharing too much online, it can give away clues regarding corporate security, not just personal identity information," he said. " Companies need to educate their staff."

Businesses should also install web security which can scan content in real time to prevent users straying to malicious sites, he added.

Social networking sites like Facebook have generally been proactive in raising awareness about security risks, but they "could do better" to protect their users from malware, spam or phishing attacks, argued Cluley.

"I'd like to see social networking sites understand that they've got a huge amount of traffic travelling through their users, so they should be more proactive in scanning it," he said.

Copyright ©v3.co.uk


 
 
 
Top Stories
Beyond ACORN: Cracking the infosec skills nut
[Blog post] Could the Government's cybercrime focus be a catalyst for change?
 
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1803

Vote
Do you support the abolition of the Office of the Information Commissioner?