Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

Symantec advice follows Twitter hack

Symantec : 21 December, 2009  (Technical Article)
Twitter site re-direct hack highlights potential dangers prompting Symantec to provide advice to the users of social networking sites
Early this morning, the Twitter Web site came under attack by a group claiming to be called the "Iranian Cyber Army." According to reports, the DNS record for the Twitter site was apparently hacked and modified to redirect to a site controlled by the hackers which featured a politically charged message. Exactly how this was done is unknown at this time, but it's possible that it could have been via a vulnerability or a stolen/guessed password.

At this time, it does not appear that malware was involved in this attack. Thus, despite the security breach and inconvenience created for Twitter users who attempted to access their accounts during the outage, it seems that no additional harm was done and that visitors to the site controlled by the hackers were not exposed to additional threats.

This event highlights the need for all users of social networking sites to be mindful of certain best practices when using such services:

* Think twice before entering your real birth date or other sensitive information on social networking sites.
* Don't respond to e-mail supposedly from a social networking site asking you to login in for maintenance reasons or to change your password
* Check your privacy settings regularly.
* Use complex and unique passwords for each account, and change them frequently.
* Don't share your password with anyone.
* Don't answer yes when prompted to save your password to a computer. Instead, rely on a strong password committed to memory or stored in a dependable password management program.
* Be suspicious of out-of-character posts or messages from individuals on your friends or contacts lists; especially if the post includes a hyperlink.
* Be aware of common social networking scams:

- Messages relating to celebrity news, such as those claiming to have "secret" information about an event.
- Pleas for money from individuals on your friends or contacts lists.
- Unsolicited invitations to join online groups, such as college alumni associations.
- Messages encouraging you to view a video, especially when the site hosting the video asks you to upgrade your "video player."
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo