Identity Theft and Social Networks

scubacuda writes "This Security Focus article looks at the lack of security social network sites have, particularly their lack of SSL logins, which means a user's session ID will be logged on any proxy and possibly sniffed. From the article: '[A]ccording to [Clay] Shirky, one thing is certain: "The value of each site is communally-created. Links and transactions are more important than individuals." In other words, each community creates its own kind of value. Thus, an attacker might hit Tribe to farm social networks for spam victims; and then he might exploit LinkedIn to get the contact information for a VC he wants to meet.'"

It's just common sense

[Waffle+Iron]

Only a total idiot would post a message on a site that doesn't use a secure login procedure.

Oh, wait...

Re:How often they get caught

[Brahmastra]

I was a victim of identity theft once and made a police complaint, an FTC complaint, etc.. They all said that it was unlikely anyone would ever be caught. Haven't heard anything for 2 years now. They need to start castrating identity thieves... it's getting out of hand.

Re:Something's wrong here

I know what's wrong! You forgot the .

WHAT?!?!?!?!?

Slashdot doesn't use or require SSL logins???

I'll have Taco's balls for this!!!! Yes siree!

Hey Taco, instead of constantly fiddling with the lameness filter and the moderation system, how about implementing basic security. Either that, or you could go home to Kathleen. [shudder]

Lameness filter encountered. Post aborted!

Reason: Your subject looks too much like ascii art.

Re:Well, duh.

1. " The idea of social networks is just insecure from the get-go."

2. "Make me your friend; my fans get +1 comment scores."

?

Re:lazy

People are getting lazier, as people get lazier security goes down, deal with it.

poeple arenot geeting lazy! their just..aw fuck it.