Facebook Privacy... SNAFU

Facebook has suffered a security bug just as many have questioned the companies new policies and how they relate to privacy concerns. It is being reported that the social networking site suffered from a bug yesterday which allowed users to view the private conversations of friends they were following. “While this breach appears to be relatively small, it’s inopportunely timed,” said Augie Ray, an analyst with Forrester Research. “It threatens to undermine what Facebook hopes to achieve with its network over the next few years, because users have to ask whether it is a platform worthy of their trust.” Fortunately for Facebook they do have 400 million users, the breach was fixed within hours, and most people only use the site to play farmville and will be oblivious to the breach anyway!

Elliot Schrage, Facebook’s vice president for public policy had this to say in response to the problem,

“For a service that has grown as dramatically as we have grown, that now assists with more than 400 million people sharing billions of pieces of content with their friends and the institutions they care about, we think our track record for security and safety is unrivaled,” and “Are we perfect? Of course not.” 

I guess they've never really come out with any "do no evil" mantras, so, all's well... nothing to see here!


Source: NYTimes

Twitter Attacked By "Iranian cyber army"

The BBC is reporting that Twitter was attacked by a group of hackers calling themselves the "Iranian cyber army". Visitors to the site last evening were being redirected to a page showing a message declaring it had been hacked.

According to the article the "It showed an image of Arabic text overlaid on a green flag carrying the name of the third Shi'i Imam, Imam Husayn.

It also included a poem in Persian which said: "We shall strike if the leader orders, we shall lose our heads if the leader wishes."

Also included were the words: "Those that wage fight on the path of God win."

For it's part Twitter has admitted that it's Domain Name Server (DNS) records had been "temporarily compromised".

iPhone/iPod Touch Owners Rickrolled By ikee Worm

A self-propagating program believed to be the first iPhone worm, that changes an iPhone's (or iPod Touch's) wallpaper to a picture of Rick Astley with the message "ikee is never going to give you up", has been unleashed in Australia. Known as "ikee" the worm only affects devices that have been jail-broken, have had SSH installed (a program that allows users to make changes to the phone's file system), and who's owners have not changed the default root password after installing SSH.

"What's clear is that if you have jail-broken your iPhone or iPod Touch, and installed SSH, then you must always change your root user password to something different than the default, 'alpine'," wrote Graham Cluley of security firm Sophos.

"In fact, it would be a good idea if you didn't use a dictionary word at all."

Source: BBC

Twitter Execs Hacked - Secrets Leaked

In what I would call a severe blow to cloud computing, a major breach of Twitter executives e-mail, calendars, and documents was reported yesterday by company officials after the hacker sent documents about Twitters plans and finances, confidential contracts, and job applicants to two tech blogs, TechCrunch and Korben. The breach occurred about a month ago with a simple breach of a password providing access to an administrative employee’s e-mail account from where access was gained to the employee’s Google Apps account, where Twitter shares spreadsheets and documents with business ideas and financial details.

This must have a lot of IT managers saying I told you so!

Source: NYTimes