Risk
5/17/2010
10:58 PM
Connect Directly
RSS
E-Mail
50%
50%

MySpace Simplifies Privacy Controls

Struggling social network MySpace says it will simplify its privacy controls so users can select one privacy setting for all the information in their profile.

Struggling social network MySpace says it will simplify its privacy controls to differentiate itself from its more successful rival Facebook, which has come under fire from lawmakers and users for having privacy polices that are confusing and too complex.

MySpace on Monday said that in the coming weeks, users will have the option of choosing one privacy setting for all the information in their profile, which includes their name, interests, birthday, photos and other personal information. The settings would include making the personal information available to friends only, anyone on MySpace or anyone 18 years or older in and outside the social network.

For users already using "friends only" on portions of their profile, that setting will become the default for all information, unless changed by the user. Before the changes, MySpace users had to set separate privacy settings for each section of their profile.

MySpace is making the changes as lawmakers, users and privacy advocates turn up the heat on Facebook for making its privacy controls too complicated and too difficult to change. Criticism of the site has intensified since it announced last month major changes to the Facebook Platform.

Those changes introduced a collection of application programming interfaces, plug-ins, and semantic markup mechanisms that provided better tools for third-party sites to gain access to information published on Facebook. While users could opt-out of having their information accessed by third-party applications and Websites, critics argue that the process is confusing and too complex.

In announcing its plans, MySpace acknowledged that it was responding to the recent controversy surrounding privacy and social networks.

"We want our users to know we are planning the launch of a simplified privacy setting for our user profiles," Mike Jones, co-president of MySpace, said on the company blog. "While we’ve had these plans in the works for some time, given the recent outcry over privacy concerns in the media, we felt it was important to unveil those plans to our users now. We believe users want a simpler way to control their privacy."

MySpace, owned by News Corp., has struggled to regain members who have left the site for the more popular Facebook. In April, MySpace had 69.2 million unique U.S. users, down 2.5% from the same month last year, according to ComScore. By comparison, Facebook attracted 121.8 million unique U.S. users, an increase of 80% from a year ago.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0485
Published: 2014-09-02
S3QL 1.18.1 and earlier uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object in (1) common.py or (2) local.py in backends/.

CVE-2014-3861
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted reference element within a nonXMLBody element.

CVE-2014-3862
Published: 2014-09-02
CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to discover potentially sensitive URLs via a crafted reference element that triggers creation of an IMG element with an arbitrary URL in its SRC attribute, leading to information disclosure in a Referer log.

CVE-2014-5076
Published: 2014-09-02
The La Banque Postale application before 3.2.6 for Android does not prevent the launching of an activity by a component of another application, which allows attackers to obtain sensitive cached banking information via crafted intents, as demonstrated by the drozer framework.

CVE-2014-5136
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in Innovative Interfaces Sierra Library Services Platform 1.2_3 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.