Vulnerabilities / Threats
4/25/2012
02:04 PM
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

Facebook's Newest Move To Tighten Security

Facebook enlists the help of Microsoft and four other security vendors as it improves defenses against malware, phishing, and spam. One tactic: Block malicious URLs.

6 Social Sites Sitting On The Cutting Edge
6 Social Sites Sitting On The Cutting Edge
(click image for larger view and for slideshow)

Facebook on Wednesday said it is working with Microsoft, McAfee, Trend Micro, Sophos, and Symantec to help improve security for its users.

The social networking giant, which plans to go public next month, has become a target for spammers and scammers due to its size. A similar trend happened to Microsoft's Windows in the 90s and has started to happen to Apple's OS X. Any massively popular platform attracts attackers.

To protect its 845 million users, Facebook is integrating malicious URL data provided by its security partners into its URL blacklist system.

[ Is HTC's rumored Facebook phone folly? Read more at Facebook Phone: 4 Reasons Why It's Crazy. ]

"So whenever you click a link on our site, you benefit not just from Facebook's existing protections, but the ongoing vigilance of the world’s leading corporations involved in computer security," the company explains on its security blog.

Keeping its users secure also happens to serve Facebook's best interests, as the site's reason for being involves sharing as a vehicle for advertising. Sharing becomes a lot less appealing when there's a risk of contagion.

Facebook's security partnership isn't just a one-way arrangement. In exchange for access to its partners' valuable security data, Facebook is offering its partners greater visibility through the Facebook AV Marketplace. As its name suggests, AV Marketplace is an online store for downloadable security software from Microsoft, McAfee, Trend Micro, Sophos, and Symantec. And it's not just for Windows users; AV Marketplace also offers security applications for Mac users.

Many Mac users remain skeptical about the need for malware protection, despite the recent Flashback trojan outbreak. Sophos' statistics indicate that one in 36 Macs is infected with OS X malware. The company's data also shows that one in five Macs harbors Windows malware, which could pose a threat to connected Windows machines.

Sophos blogger Carole Theriault celebrates the Facebook partnership while also pointing out that users need to take an active interest in their security. In a blog post, she likened security software to automotive safety features like brakes and seatbelts, noting that if people fail to use them, they're worthless.

"To better safeguard your account, make sure you choose a strong unique password for your Facebook account, and don't tell it to anyone," she wrote. "Look over your privacy settings regularly and carefully choose your configuration. Take care when downloading applications. Only befriend people you know. Report suspicious activity to Facebook."

Sophos's presence among the other security companies is noteworthy because the company has been more than a little bit critical of Facebook security in the past. In a blog post comment, Graham Cluley, senior technology consultant at Sophos, insisted that the beatings will continue.

"We don't have any plans to stop reporting about Facebook security and privacy issues," he wrote.

Perhaps it's too much to hope that Facebook's partnership with five security vendors might mean fewer noteworthy security incidents.

At a time when cybercrime has never been more prolific and sophisticated, budgets are being cut. In response, IT is taking a hard look using third-party services--outsourcing--to meet security challenges. Our Making The Security Outsourcing Decision report outlines the various security outsourcing options available. (Free registration required.)

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-4907
Published: 2014-07-11
Cross-site scripting (XSS) vulnerability in share/pnp/application/views/kohana_error_page.php in PNP4Nagios before 0.6.22 allows remote attackers to inject arbitrary web script or HTML via a parameter that is not properly handled in an error message.

CVE-2014-4908
Published: 2014-07-11
Multiple cross-site scripting (XSS) vulnerabilities in PNP4Nagios through 0.6.22 allow remote attackers to inject arbitrary web script or HTML via the URI used for reaching (1) share/pnp/application/views/kohana_error_page.php or (2) share/pnp/application/views/template.php, leading to improper hand...

CVE-2014-2963
Published: 2014-07-10
Multiple cross-site scripting (XSS) vulnerabilities in group/control_panel/manage in Liferay Portal 6.1.2 CE GA3, 6.1.X EE, and 6.2.X EE allow remote attackers to inject arbitrary web script or HTML via the (1) _2_firstName, (2) _2_lastName, or (3) _2_middleName parameter.

CVE-2014-3310
Published: 2014-07-10
The File Transfer feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center does not verify that a requested file was an offered file, which allows remote attackers to read arbitrary files via a modified request, aka Bug IDs CSCup62442 and CSCup58463.

CVE-2014-3311
Published: 2014-07-10
Heap-based buffer overflow in the file-sharing feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center allows remote attackers to execute arbitrary code via crafted data, aka Bug IDs CSCup62463 and CSCup58467.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.