[aCe]

Quote

Facebook has had its first serious security breach. Hackers are targeting the social networking site's almost 60m registered users with a phishing scam that "harvests users' login details and passwords", reports Wired News. The 525 802 South Africans on the site could also be targets.

When users enter their account they found unusual postings on their "wall" from one of their friends, saying: "lol i can't believe these pics got posted.... it's going to be BADDDD when her boyfriend sees these," followed by what looks like a legitimate Facebook link, reports Wired News. The link takes you to a fake Facebook login page hosted on a Chinese .cn domain. The page logs you into Facebook, but retains a copy of your user name and password.

The hackers use the compromised profiles to "host Trojan horses such as key loggers that go on to steal banking passwords and credit card numbers", warns Wired News.

They can also use it to send spam or malware.

Since the Wired News article, the offending URL: h--p://www.facebook.com.profile.php.id.371233.cn/, making 371233.cn has disappeared and shows an error page.

Should you be a victim, Wired News suggests you log in and change your password immediately, and do the same for all accounts that carry that password.

Source

Good thing I stopped using Facebook. Just shows the retardedness that is applications on facebook.

[nms]

They can go ahead and take my details, what are they going to do? Look at my inbox? I don't store anything others shouldn't really see on the site.

[Scott]

The applications piss me off. The only one I have is Jetman (greatest game in the world). I hate the funwall crap, spam galore. Anyone who has that application deserves to get their shit stolen.

[vdL]

nemeS1s, on 05 Jan 2008, 05:15 PM, said:

They can go ahead and take my details, what are they going to do? Look at my inbox? I don't store anything others shouldn't really see on the site.

Agreed.

aCe, why don't you stop using FireFox/IE/Oprah as your web browser? They have all been hacked and breached.

Facebook is stupid yes,but it is an excellent way to maintain/establish contact with people you know from 1st grade or whatever.

[The_Assimilator]

Facebook isn't a web browser, mkay? Most people would never store all their personal information, plus a list of their friends in a web browser - yet the same people are willing to entrust those details to a website that can willingly hand out your details to 3rd parties. What of the privacy implications if someone gets full access to your Facebook account? Said person would now know who your friends are, plus their email addresses, IM contacts, etc. - perfect scenario for a stalker, not just spammers.

That said, if you're using Facebook in the first place you probably don't give a hoot about privacy, given how many security breaches and screwups that site has encountered.

Jeff Atwood said:

Demand privacy even if you don't think you need it. Consider that the next time you sign up for some new social networking service, or a grocery discount card, or give out your telephone or social security number for some trivial reason.

source

[vdL]

The_Assimilator, on 05 Jan 2008, 05:36 PM, said:

Facebook isn't a web browser, mkay?

No NEVER!

It was an example.

[Apoc]

The_Assimilator, on 05 Jan 2008, 05:36 PM, said:

Facebook isn't a web browser, mkay? Most people would never store all their personal information, plus a list of their friends in a web browser - yet the same people are willing to entrust those details to a website that can willingly hand out your details to 3rd parties. What of the privacy implications if someone gets full access to your Facebook account? Said person would now know who your friends are, plus their email addresses, IM contacts, etc. - perfect scenario for a stalker, not just spammers.

Erm, not to take the jam out of your doughnut or anything, but my web browser sees a whole lot more sensitive information than what my Facebook account does.