Criminal hackers now view social networking sites as their best target for attacks, according to Rob Rachwald, director of product marketing at Fortify Software.
Part of the reason is that such sites are designed to be usable by “unsophisticated” consumers, meaning that the barrier to entry for attacks is potentially lower as users are more likely to click on a link that leads to malware.
“A buffer overflow enabled hackers to exploit the Aurigma ActiveX image uploading software used by Facebook, MySpace and other social networking sites,” said Rachwald.
“The bad news is that this exploit is being used in a hacker toolkit currently being offered for download on several Chinese language sites, meaning that novices have been able to stage these attacks, and not just professional hackers.”
Yet another reason to hate the zillions of apps and invites.