Rogue Facebook App Puts Users at Risk of ID Theft
The Facebook social networking site soared in popularity after it began allowing users to customize their profiles with mini-applications put together by outside developers.
But the change also made it easier for those with nefarious intentions to install rogue applications, reports Agence France-Presse. And seemingly innocuous material posted on a profile, such as photos of pets or close relatives, can provide information useful to identity thieves, including likely code words that might be used to obtain an e-mail for a “forgotten” password.
Once entry has been gained into a Facebook user’s account under the latest “Koobface” worm variation, it steals the cookie needed for access into other personal accounts, such as MySpace, the news agency writes.
Users are enticed into clicking on unknown video links by messages such as “Look you were filmed all naked!” reports the Telegraph. But when they click on, say, a seeming YouTube link, they’re invited to download the latest “update” to their video-playing software. If they do so, they’re actually installing a computer virus.
Similar worm attacks, of course, can be mounted on other social networking sites, too. The best defense is to be selective about one’s online friends and wary about downloading any unknown material, experts advise.
Additional coverage:
60-Second Science (Scientific American): “New Koobface worm lets hackers play tricks on Facebook, MySpace members”
