Facebook Defends Security Practices

  /     /     /  
Publicated : 22/11/2024   Category : security


Facebook Defends Security Practices


The social network responds to report alleging it puts the safety of its 650 million users at risk by not better securing third-party applications.



(click image for larger view)
Slideshow: Top 15 Facebook Apps For Business
Is Facebooks app system inherently unsafe for the social networks 650 million users?
Responding to that exact criticism, the company last week issued a statement defending its security practices. We have a dedicated team that does robust review of all third-party applications, using a risk-based approach. That means that we first look at velocity, number of users, types of data shared, and prioritize, said Facebook. This ensures that the team is focused on addressing the biggest risks, rather than just doing a cursory review at the time that an app is first launched.
The companys statement was issued in reaction to a new
threat report
from Sophos, released on Wednesday. According to the report, with furious debate raging every time privacy and security settings are tweaked on Facebook, it seems that functionality and ease-of-use triumph over security every time.
To better protect users, the report recommended that Facebook take a page from Apple and adopt a
walled garden approach
, in which applications would require official approval before they can be uploaded to the site and shared with other users.
In its statement, however, Facebook seemed to stand by its post-screening security process. We have built extensive controls into the product, so that now when you add an application it only gets access to very limited data and the user must approve each additional type of data, said Facebook. We make sure that we act swiftly to remove/sanction potentially bad applications before they gain access to data, and involve law enforcement and file civil actions if there is a problem.
But
Graham Cluley
, senior technology consultant at Sophos, said the current approach cant keep up with the volume of new threats. Facebook Security is effectively playing whack-a-mole, hammering the latest rogue app whenever they happen to spot it, and hoping that not too many accounts were compromised in the meantime. Unfortunately, quite often Facebook Security dont seem to spot the scams until they have spread far and wide.
Interestingly, the Sophos report released on Wednesday also found that more than half of the companies surveyed imposed no limitations on accessing Facebook, Twitter, and LinkedIn -- and less than a quarter of firms completely block these sites.

Last News

▸ IoT Devices on Average Have 25 Vulnerabilities ◂
Discovered: 23/12/2024
Category: security

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Facebook Defends Security Practices