Optimal Security : the Lumension Blog

What’s all the fuss about the latest changes on Facebook? Simply put, the changes mean that nearly everything that you place on your Facebook page can now potentially be made available to anyone surfing the Internet.
The latest Facebook changes are purported to be an enhancement to make the social networking site easier for people who are looking for [...]

It certainly seems that not a week goes by without hearing about yet another attack on Facebook users. Last week it was a phishing scam driven by a botnet, and this week, we have two new and different phishing scams — one cleverly tricking users into revealing their passwords and another installing malware that quietly [...]

Over the past months it has been interesting to watch the furor over certain End-User License Agreements and the definition of data ownership.  Most draconian was the idea that once posted by a user, the data transferred ownership to the social networking site.  This of course has huge implications to an individual user, especially for [...]

With Twitter expected to top 18 million users by the end of this year, users of the widely utilized social media tool are seeing first-hand the ugly side of this popular platform.  Another Twitter phishing scam reared its ugly head this week, aggressively sending out direct message spam, hoping to lure unsuspecting users to click [...]

Whether you want to admit it or not, social networking is a fact of everyday corporate life. In most companies, the number one social networking application used daily during work hours is Facebook. This is not a fad as it took less than 9 months for Facebook to reach 100 million users and the Apple [...]

The current Twitter cross-site-scripting vulnerability (Twitter XSS vulnerability) should not be a surprise to anyone given how new the Twitter platform is.  For millions of its users including myself, we have all seen our fair share of bugs and issues such as Twitter downtime for maintenance, lost profile pictures, misdelivered direct messages and publicly revealed [...]

According to this by Maryland-based blogger/attorney Judd Legum, the state Office of Legislative Information Services there banned access to Facebook and MySpace last week. And not for the usual time-wasting or inappropriate usage reasons. Nope, it was the “significant increase in viruses and malware … [which they] have determined … are originating from pages hosted [...]

I was interested to see two articles on the front page of the Personal Journal section of the Wall Street Journal last Thursday (29-Jan-09) about the increase in cybercrime and malware found on social websites such as Facebook. It is always remarkable to me when some tech meme (esp. one from our neck of the [...]

The recent Google blacklist faux pas which resulted in the entire Web being designated as malware got me thinking: a whitelisting approach might be better, but be careful which list you trust because bigger is not necessarily better.
So, I got up Saturday morning and, after getting my Moka Pot up & boiling, sat down to [...]