Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Sophos Comments On One-Time Password Option From Facebook

Sophos : 14 October, 2010  (Technical Article)
IT Security company warns users against complacency when using insecure computers for accessing Facebook regardless of the latest improved security features offered by the social networking site
Facebook has announced a new feature that claims to give users an additional method to keep their social networking account secure. Facebook claims that its new one-time password feature will make it safer to use Facebook on computers in public places such as hotels, cafes or airports - as users can now request to receive a temporary password by SMS message which expires after 20 minutes.

However, Graham Cluley, senior technology consultant at Sophos, warns that Facebook's one-time password feature could in fact result in further security concerns for users.

'If you believe a computer might not be secure in the first place, why would you use it to access personal accounts such as Facebook? A temporary password may stop keylogging spyware giving cybercriminals a permanent backdoor into your account, but it doesn't stop malware from spying on your activities online and seeing what's happening on your screen,' said Cluley. 'Furthermore, if you're anything like me, it's likely that you've mislaid your mobile phone from time to time. If someone else can gain access to your phone and send a text message, your Facebook account will be unlocked.'

'There's a simple lesson that everyone needs to learn. Never visit websites like Facebook from computers that may not be running adequate anti-virus software or security patches. If you don't trust the PC, don't use it to access Facebook - even if you do have a temporary password,' continued Cluley. 'Instead, wait until you have access to a trusted PC, rather than risking sharing your personal information with unknown others. There's a real danger that the one-time-password system will be viewed as a green light by Facebook users to access their accounts from unsafe PCs.'
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo