All the latest UK technology news, reviews and analysis
|
|
|
24 Jun 2008
Social networks designed to aid businesses and their employees are potentially putting both at risk.
Sites such as Facebook and LinkedIn are becoming increasingly important to enterprises, but can compromise corporate and individual security if not closely monitored, say experts.
Web security firm WorkLight pointed to a recent outbreak of phishing attacks on Facebook as an indication that the social networking service has become a corporate security risk.
"Companies currently gain substantial B2B and B2C benefits by using social networking sites to uplift sales and promote products and services," said David Lavenda, vice president of marketing and strategy at WorkLight.
"Yet as phishers target Facebook users, secure access to these sites is a must-have on the security front."
Facebook has long been among the list of web-based services and peer-to-peer applications classified by security experts as 'greynets'.
These are programs which pose a security risk because they are difficult to monitor and control with conventional administrative and security software.
However, the risk from social networks may go beyond conventional cyber-crime. Security firm Aladdin noted that LinkedIn could unwittingly become a market for corporate espionage.
Aladdin explained that when users update their information, a list of each company's new hires and promotions is compiled. By analysing this information, a company could figure out a competitor's strategy and possible initiatives.
"Corporate 'spying' has never been easier. This new trend raises discomforting corporate data issues of disclosure and control," the security firm said.
"Companies and organisations have little or no control over the information their employees share on social networks, and individuals generally make no distinction between public or confidential corporate data that they disseminate. "
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Order Processing Specialist - 12 Month Fixed Term Contract...
Great opening with one of the worlds leading information...
JAVA J2EE Developer required with RIA, web services...
Hi, Job Title : Linux Admin Location : Brussels...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Some truth
The espionage theory is true. Yes, a competitor could work out a stragegy, but perhaps simpler than that, through LinkedIn they get access to the CVs of a company's top performers, along with contact details. You needn't waste time analysing the wealth of data on there to do damage; just make an offer that can't be refused to your rival's top sales people. I would actually question the business value of either Facebook or LinkedIn. The former has a member base that has already rebelled against advertising (check Google for details of the Facebook Beacon debacle) and there is little in a person's profile on LinkedIn that actively promotes a company to prospective customers. If your sales people spend time networking they can then easiily take all those contacts with them when they get poached - remember, many of the premium subscribers to LinkedIn are recruiters. Best to show support for the next wave of business focused socnets, where doing business and needs and solutions matching are the primary objective. Ian Hendry CEO, WeCanDo.BIZ
Posted by: Ian Hendry 24 Jun 2008