Tag Archive: facebook privacy


 

imageAnother day, another Facebook privacy fiasco. And this time it’s a doozy according to security experts at Symantec. Symantec found Facebook has accidentally exposed users’ info to third parties, including advertisers, for the past four years. But we do have a solution to fix it..look at the bottom of post to know how.

The good news is once Facebook was alerted the problem the social network took action. But, some Facebook users might still be vulnerable to a digital invasions of privacy unless they take action. Here is what happened.

The Facebook Privacy Flub

Symantec claims Facebook has not only leaked private data such as your sex and your age, but for the past four years third-parties have had access to such goldmines as your profile, photos, and chats. Symantec also blats Facebook for giving third parties the ability to post things to your wall.

Luckily, there’s an upside–Symantec says it’s likely that said third parties weren’t even aware of the data mines sitting under their feet. After all, the leakage was accidental.

How it Happened

According to Symantec, certain Facebook applications have been inadvertently leaking "access tokens" to third parties such as advertisers and analytic platforms. Symantec estimates that close to 100,000 Facebook apps were enabling this leakage in February 2011.

When you install an application on your Facebook account, a little window pops up. This window usually asks you to give the application certain permissions, such as the ability to see your info and publish posts to your wall. When you click "Allow," the application is granted these permissions–which are also known as "access tokens."

Most of these access tokens expire after a short period of time, but Facebook also allows applications to request "offline access tokens." Offline access tokens allow the application to access your Facebook account even if you’re logged off, and do not expire until you change your Facebook password.

According to Symantec, in the process of granting access tokens to applications, Facebook has been inadvertently dropping the same tokens to third parties. Facebook introduced third-party applications in 2007, so there’s no telling how many access tokens were dropped in the past four years.

What it Means for You

Facebook has been alerted to the situation and has fixed the problem, Symantec is happy to report. However, third parties may still be able to access your information if they were given offline tokens that don’t expire until you change your password.

 

So this means you should change your password.

And probably, stop trusting Facebook. But that’s another story.

 

as said by By Sarah Jacobsson Purewal

Advertisements

Click Here to Download for free.

       At first, you might think that “why on earth would I ever need a guide for facebook?”. May be you are a hardcore Facebook addict who is “facebooking” from last few years or a new one to this amazing site. But there is no way to think that just because you’ve been on facebook for a while so you know everything. Facebook developers keep on pushing codes every day. From UI updates to new features and new settings..Keeping up with Facebook’s ever changing  landscape and  the way it affects the security and privacy of your account can be a challenge.
     This is a small guide in simple language that can help minimize the potential threats to your security and privacy on Facebook, it has simple steps with screenshots so that it can be easy for you to set up the proper settings.

       I hope, you’ll find it useful.
Cheers!

 

 

Main Headings:

  • Get notified when your account is being access from someone else’s PC, Laptop or Check when your profile was accessed and from where. 
  •  Securing your personal information from your friends’ applications. 
  • Controlling Social Ads from displaying your actions 
  •  Controlling Third Party Application’s Access 
  •  Preventing anyone to search your Facebook profile on Google or any search engine 
  •  You have set the privacy level “only to friends” in all the photo albums but what about your PROFILE PICTURES?    

 

 

Facebook Security 101

Over half a billion people use Facebook around the world. It is the single largest phenomenon of human connection in history, not to mention the biggest thing ever to hit the Web, and a source of enjoyment for millions. But it’s becoming more and more of a love-hate relationship. We love using Facebook and other online social networks, but we hate the ever-increasing privacy and security concerns.

Those concerns about privacy on Facebook have caught the attention of the U.S. Government: Congress recently sent Facebook an open letter asking the company to explain the disclosure of user identities to third parties (as originally reported by the Wall Street Journal), and how the company plans to address this issue. James Clarke, senior consumer technology analyst at Mintel International, makes very clear what’s at stake: “It’s in Facebook’s own interests to provide a safe environment for users to enjoy; the value of their business depends on it.”

The wheels of Government will inexorably turn, albeit slowly, and you need to secure your privacy now. Here are some steps you can take to keep your private information private on Facebook.

Facebook Places

Using Facebook Places has its benefits, but whether you’re using a mobile device or a desktop, telling the world where you are has major disadvantages. When you broadcast your location, you’re exposing vulnerabilities for an ill-intentioned person to swoop up. And your iPhone or Android-based smartphone can broadcast your exact geographic coordinates down to a few feet.

If you use Facebook Places, remember that Facebook instantly defaults your privacy setting so that “Everyone” can see your profile. And that doesn’t mean everyone on Facebook, but everyone on the Internet.

Surf over to the Account tab in the upper right corner and select Privacy Settings. From here, you can set who can and can’t see your profile, and how much you want others to see when you upload comments and images. If you don’t like the idea of anyone knowing where you are, you should disable Facebook Places completely.

Disable Facebook Places: To do so, log into Facebook, and select Privacy Settings from the Account drop-down menu (upper-right corner of the page). From there, click Customize settings–the link is at the bottom left of the page. The last line under the Things I share section deals with Facebook Places. Click Edit and select Disable.

This stops Places from operating on your profile, but it does nothing for what your friends do.

To stop friends from broadcasting your location, scroll to the Things others share section. At the bottom of that table is the Places section. There, click Edit and select Disable.

Control Individual Items Posted to Your Profile

Aside from the generic settings you control through the Account and Privacy Settings pane, you can also set the privacy level for individual items you post to your profile. This is frequently overlooked, but it is a targeted way of controlling the content posted to your profile.

Naturally, you should be careful what you post to begin with. Even if you permanently delete your Facebook account (see the last tip, below), the photographs and information that you’ve shared with your Facebook friends can still be lurking somewhere on Facebook or the Internet; if in doubt, don’t post it, but if you do, control who sees it by using the lock feature.

Using the Lock: Posting a photograph to your profile? Before you press Share, look closely at the drop-down menu above the sharing tool. Click the drop-down menu to reveal the choices of who you want to see the post: Everyone, Friends of Friends, Friends Only, or Customize.

The Customize setting will allow you to block individual Facebook friends irrespective of the choice you select. (It should go without saying, but you shouldn’t accept friend requests from people you don’t know. Doing so negates any and all security tips you can possibly implement.)

Hide Your App Activity

Some of the most popular games on Facebook, such as Metropolis and Mafia Wars, require–and reward–players for recruiting other users–that is, you can’t succeed in the game unless you recruit other friends. And some games and apps will automatically post messages to your wall so your friends see what you’ve been up to (when you first play the game or use the app, you agree to the terms and conditions that allow the game or app to do this).

These frequent posts can be a nuisance to your Facebook friends, and besides, do you really want others to know that you’ve been playing Farmville all day instead of working?

 

Hitting the Facebook Invisible Key: Head over to Privacy Settings under your Account settings. At the bottom left of the Privacy Settings page is a link to the privacy options for Applications and websites.

Select Edit Your Settings, and then locate Game and application activity, which is the third item listed on the resulting page. Next, select Custom from the drop-down menu and choose Only Me in the dialog box that pops up.

Now no one but you will be able to see your gaming activity through your Facebook profile.

Disable Facebook Apps Entirely

Sending out updates is just one example of what Facebook apps can do. Not all apps flood your newsfeed, but Facebook apps all have a common denominator: They can gain access to personal information you enter into your profile.

Author and former head of The Security Consortium Mark Kadrich is concerned about Facebook’s quality control over third-party developers. “App developers are providing code for the Facebook environment,” Kadrich says. “But how much security testing is really being carried out by Facebook before letting it loose on users?”

Facebook’s policy is that application developers are not allowed to use your personal data off-site and are only supposed to access sufficient personal information to allow them to run, or to “enrich” your user experience. But once an app has access to the personal information that it needs, it’s up to the app developer to keep that information safe.

If you’re not happy with third parties having access to your information, the best course of action is to block all applications on Facebook.

Applications–Exit Stage Left: Select Privacy Settings under the Account drop-down menu and press Edit your settings under Applications and websites.

Under Applications you use, select Turn off all platform applications:

And on the resulting alert box, choose Select all and press the Turn Off Platform button:

You may have to wait a few minutes while the new settings are put in place; it takes time to go through any existing applications to disable their access.

Controlling What Your Facebook Friends Tell the World About You

Just as you might not want people to know where you are, you also may not want your friends passing on information about you either. Your friends have access to your profile, and they can repost items you posted to your wall–such as photographs–to their own profiles, or share the information with others, all without you knowing or having any control.

Your Facebook friends may also be using Facebook apps themselves–these apps may have access to their friend lists for information, and that includes you. To better control who can access your private information, you have to control what information your friends can give out about you.

Access Denied: Press Privacy Settings under Account and go to Applications and websites. From there, click Edit your settings, and then Info accessible through your friends. There, you’ll find a detailed table of items you can deselect from sharing when your friends allow apps to access your profile information; for full privacy, deselect everything (recommended).

The Ultimate Security: Delete the Account

Deleting your Facebook account entirely is a draconian step, but it may be worth considering if you feel you’ve outgrown the usefulness of Facebook, or have simply changed in outlook. All those drunken or injudicious frolics–or simply the need to adopt a professional persona in public–may mean you need to wield the ax over your Facebook account.

The problem is, you can’t–at least not without doing some digging. You can only deactivate your account, which makes it, dormant so to speak, from your Account Settings page. Your profile is still there, in hibernation, still available to Facebook.

Deep-sixing Your Facebook Account: Be warned–this process takes 14 days, and you cannot use your Facebook account in any way once initiated. The link to permanently delete your Facebook account is buried deep in Facebook’s Help pages, so we found it for you. Request that your account be deleted here.

Press Submit. Fill out the resulting form, then press OK. Leave the site, never to return.

Facebook is great fun, but ultimately you are responsible for staying safe and secure. And although Facebook has its responsibilities too, the onus is on individual users to understand how the privacy and account settings work, to apply Facebook’s privacy controls, and to regulate their own behavior. Even if Facebook should, hypothetically, be sanctioned for losing user information–for letting it get into the wrong hands–that will be little comfort if you are one of the victims.

compiled from L.K.

%d bloggers like this: