Linkin Park's Facebook page was hacked and used to send out spam links.
With Hurricane Sandy on a collision course with the Northeast, cyber crooks are likely to take advantage of the historic storm to make a quick buck or steal personal information from the unsuspecting.
Two privacy groups are urging the Federal Trade Commission to investigate a new Facebook partnership to learn whether it violates the terms of an earlier settlement.
The personally identifiable information found on social networks are a gateway for hackers to get access to the heart of the information they truly desire.
The FTC has made major moves this year in its fight against cyber crime, and if enterprises and organizations aren't careful, they may be facing a team of the agency's investigators.
Sites such as Facebook and Twitter contain seemingly infinite amounts of personal data, so it's no wonder criminals have turned their focus there. But social media providers and end-users can protect themselves.
Perhaps Facebook users are beginning to expect more consideration from their friends on social networks.
Trusting the good intentions of an agency shouldn't carry an automatic assumption that what they do or say, or where they say it, is always good for you.
After being "sinkholed," the Kelihos.B botnet has been reconfigured and is spreading through social networking sites.
Facebook users in Europe experienced a two-hour blackout that the company describes as "technical difficulties."
A new variant of the Ramnit virus harvested the login credentials of more than 45,000 Facebook users worldwide, according to researchers.
Variants of the Zeus trojan are being used in new Facebook and banking heists, security researchers and law enforcement are warning.
The social media giant is "pursuing the appropriate action" against those behind a wave of pornographic content that showed up on users' news feeds this week.
Once again Facebook is a focus for unsavory activity, but is there a change here for the worse?
At some point in the future, Facebook plans to begin asking researchers to review code that has not yet been released, according to Joe Sullivan, CSO at Facebook.
A web-based business embraced social media as a business enabler...after putting in place the right tool, reports Greg Masters.
Facebook on Thursday introduced two new security features to help users better protect their accounts. The first is the ability to create unique passwords for each application a user accesses. (Normally they only need to enter in their standard Facebook credentials). The new capability allows members to create a password, which they won't have to remember each time they login to the app, by visiting Account Settings>Security>App Passwords. Meanwhile, the "Trusted Friends" feature allows a user to select three to five trusted individuals to serve as custodians of codes that can be used to access one's account if he or she is ever locked out.
Researchers have discovered a way to evade Facebook security controls to deliver a message that could come outfitted with a malicious attachment.
Truth when Symantec inadvertently blocks access to Facebook.
Online miscreants took to Facebook about an hour after Apple announced that Jobs died, attempting to earn commission by luring users into clicking on affiliate scam links with the promise of a free iPad.
Facebook is the 21st century chainletter channel of choice.
Just 32 percent of U.S. IT and IT security practitioners said their company has a policy that addresses the acceptable use of social media by employees in the workplace.
Three weeks after launching its vulnerability bounty program, Facebook has awarded one security researcher more than $7,000 for reporting six different issues.
Facebook has released a guide to security. Written in simple-to-understand terms, the 14-page document encourages users to set strong passwords and log out of their accounts when they are finished. It also address common scams on the social networking site, including clickjacking. The handbook suggests users implement enhanced security settings, including secure browsing, one-time passwords and account activity monitoring. In addition, it explains how Facebook members can recover their accounts if they have been compromised.
Blanket censorship of social media in the UK might be unlikely, but targeted blocking based on legal interception isn't out of the question.
Facebook should use its recently announced vulnerability bounty program to push for more security in third-party applications that run on the site.
One of the more prominent members of the Anonymous hacking movement has shot down reports that the group is planning to take down Facebook on Nov. 5. "Sabu" tweeted Wednesday that the so-called OpFacebook is a hoax. His claim was backed up by AnonOps, considered the most reliable Anonymous news source on Twitter. It is possible splinter members are planning the attack, which is being launched over allegations that Facebook provides information about its users to government agencies and security firms, according to a YouTube video posted in mid-July. The Nov. 5 date is known as Guy Fawkes Day to commemorate the capture of the British revolutionary who plotted to blow up the House of Lords.
The company joins several other high-profile web brands by providing awards to researchers who privately disclose flaws, such as cross-site scripting.
The Facebook page for Pfizer has returned online after it was compromised by hackers who posted remarks disparaging the pharmaceutical giant. U.K.-based group The Script Kiddies claimed responsibility with gaining control of Pfizer's Facebook page, which has nearly 30,000 followers, to post updates that called the company "corrupt" and "irresponsible." Once it retook control, Pfizer posted a message on the account saying it was "working with Facebook to understand what happened so we can guard against it in the future." The Script Kiddies, through its Twitter account, posted two screenshots of the defacement, done as part of the AntiSec movement recently announced by fellow hacktivist collectives Anonymous and LulzSec.
The website belonging to a man in Pakistan who unknowingly live tweeted the raid on Osama bin Laden's compound was found to be infected with malware.
Sign up to our newsletters
SC Magazine Articles
- APT operation 'Double Tap' exploits serious Windows OLE bug
- 'DoubleDirect' MitM attack affects iOS, Android and OS X users
- Android malware 'NotCompatible' evolves, spawns resilient botnet
- Vulnerabilities identified in three Advantech products
- The Internet of Things (IoT) will fail if security has no context
- Operators disable firewall features to increase network performance, survey finds
- Waste no time patching Windows Schannel, OLE bugs, experts warn
- Study: 68 percent of healthcare breaches caused by loss or theft of devices, files
- Spin.com redirects to Rig Exploit Kit, infects users with malware, Symantec observes
- Upping the ante: PCI Security Standard
- DDoS attacks grew in size, threats became more complex, Q3 reports say
- Man gets 18 months in prison for accessing Subway POS devices, loading up gift cards
- Automating change to tackle advanced threats
- APT operation 'Double Tap' exploits serious Windows OLE bug
- Regin: nation-state possibly behind the stealthy modular spying malware