DARK READING -- Aug 2 -- MySpace, LinkedIn, Facebook, and Friendster, are susceptible to SQL injection attacks. SQL injection-type attacks can do a lot more damage than a worm or adware: They could provide an attacker with access to a social networking site's entire database, for instance, says David Aitel, CTO of Immunity. "Every site is based on PHP in the front and MySQL in the back," he says. "As you sign up and fill in a form or login, if the site isn't doing the proper check of characters, an attacker could insert a SQL command and get access to all usernames" or other data about MySpace, he says. Social networking sites don't collect the type of personal data big-time hackers crave -- social security numbers, credit-card numbers, and bank account data. But they could be used to stage an attack on that data. "MySpace could be used to get a dropper Trojan on a machine and set up a stakeout post," Cole says. "When the user goes to his or her corporate site, it would go ahead and steal his login credentials." Or if a user gets infected on LinkedIn, for example, his banking information could be stolen when he does online banking. FULL ARTICLE @ DARK READING
Mark Brooks: Really? Your comments please.
Research
Reviews
- Build A Dating Site
- Financials: Cupid plc
- Financials: FFN
- Financials: Jeevansathi
- Financials: Jiayuan
- Financials: Match
- Financials: Meetic
- Financials: SNAP
- Financials: Spark Networks
- Internet Dating Acquisitions
- How To Choose A White Label Dating Service
- iDating Twitters
- Instant Messengers
- Internet Dating Statistics
- Payment Providers
News by category
Rankings
Twitterers
« The Brimming Melting Pot | Main | Luvoo Sued For No Call Violations »
TrackBack
TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d834515c5f69e200d834a543cf53ef
Listed below are links to weblogs that reference Social Networking Gone Bad:
Comments
Mark Brooks
- About
- Consulting Group
- In The Press
- CEO Interviews
- Service Spotlights
- Contact Mark
usa: 212-444-1636
uk: 020-8133-1835
mark@courtlandbrooks.com - LinkedIn Profile
Free Services by Courtland Brooks
- Courtland Brooks Blog
- Daily Deals Observer
- Domains & Sites For Sale
- Internet Dating Affiliates
- Internet Dating Executive Alliance
- Internet Dating Investments
- Internet Dating Jobs
- Internet Dating Newswire
- Internet Dating Science
- Online Personals Insider
- Online Personals Watch
- OPW - Deutsch
- OPW - Español
- OPW - Français
- Social Networking Insider
- Social Networking Watch
Events
- iDate Startup
Feb 22, 2012 in Boston - Conversion Conference
Mar 5-6, 2012 in San Francisco - iDate Startup
Mar 9, 2012 in Austin - Subscription, Membership & Paywall Site Summit
Apr 24-25, 2012 in San Francisco - The 3rd Annual Corporate Social Media Summit East Coast
June 13-14, 2012 in New York - Internet Dating Conference
June 20-22, 2012 in Beverly Hills - Conversion Conference
June 25-26, 2012 in Chicago - Internet Dating Conference
Sep 10-11, 2012 in Köln - Internet Dating Conference
Nov 2012 in Sydney
Recent Comments