Recently, news broke that in an effort to combat online revenge porn, Facebook is requesting that you send them your nudie pics! Here are some comments I shared with the Morning Dose television program:
Guest Post by Cassie Phillips
You can’t have spent more than a week on the internet without hearing about malware and its adverse effects on your computer or even your smartphone (smartphone malware is on the rise as well). Perhaps you’ve even had to spend half a day cleaning it off your computer yourself. It is a menace, and it is dangerous considering the data it could potentially steal from your computer.
Malware has been around as long as the internet, but now that we have social media surrounding us wherever we go, some enterprising cybercriminals took it upon themselves to develop malware that directly targets social media and those related accounts. This leads to stolen data from social media accounts, much of which is personal in nature and can be used against you if not used to steal your identity. It also leads to takeover of your social media accounts, which is usually embarrassing and hard to recover from.
Here’s what you need to know about the threat:
What Makes It So Special?
Technically, not very much. Malware is often do diverse that it is hard to categorize it other than the effects is causes or its main targets. Social media malware isn’t magic or a special program only developed by the best hackers in the world, it is just a piece of software that intends to make your life miserable through your social media pages. Sometimes the term is used to describe malware spread through social media and at other times it is used to primarily categorize the target. Either way, the malware itself is not too different from the malware that attacked accounts or through websites before it.
Yet this does make it a very special kind of threat. If a piece of malware attacks your browser you can often simply delete it from your computer before it spies on too much or causes too much damage to your computer. Social media malware is different. It takes on a public edge. Whether it is malware you click on thinking it is a friend’s link or something you find somewhere else online that later posts on your wall it is a much more personal assault. Malware spam is usually not very polite about what it shares with family and friends, and can often disturb them.
The first thing you need to know is that it is becoming more common. More sophisticated cybercrime usually goes for breadth instead of depth when it comes to average consumer targets. Malware does take time for development, and the first wave had to tailor their product for social media. Now that all of the framework for malware has been developed, cybercriminals can now also spend more time tweaking instead of starting anew. This means more frequent attacks of different kinds.
Hackers probably could simply try to get into people’s accounts one at a time, but that isn’t cost effective and the automation and plague-like nature that malware has in its very nature means that a single cybercriminal can target a theoretically unlimited amount of victims. They can not only make a living and cause someone a bad day, but get rich and cause chaos doing so.
All of this coincides with increased rewards for those who successfully take over someone‘s social media account. With the monetization of social media people are linking credit card or even bank information to their accounts. This means that identity theft is easy for someone with the access to your account that social media malware can provide. Combining that with increased connectivity between people allowing for a quicker spread of the malware means that your Facebook account has a glowing red target on it.
Defenses and Preventative Measures
When trying to prevent social media malware from getting into your life you are by no means alone or hopeless. You should consider following the tips below to make yourself safer:
- Use a Virtual Private Network (VPN) whenever you are going to use social media in public (this includes checking Twitter on your smartphone). Hackers love to intercept data over public networks and use it against you, and this can include getting to your accounts and computer and installing malware. This can lead to either the direct takeover of your accounts or easier targeting of them.
A VPN is a service that connects your computer to an offsite server using an encrypted connection, keeping hackers out and your data in. It also hides your location from anyone tracking you. You will want to make sure that you are getting the very best available, so read up on ones that will work best with your devices while using social media.
- Make sure that you are updating your online security suite (and if you don’t have one, please get one now) frequently. Malware comes out quickly, and you need to be up to date in your defense as much of the time as possible.
- No offense is meant, bur some of your social media friends have no idea what they are doing. Do not accept their app invitations or engage in their chain posts. Many of them are traps. If they have a copy and paste message with a link, don’t pay any attention to it.
- Try to maintain at least some degree of privacy on social media. The opinions of strangers rarely matter, and you certainly have better things to do with your time. What cannot be seen cannot be so easily targeted, and if you partition off the pointless parts of social media those parts can’t get to you so quickly.
Social media malware isn’t going anywhere, and you need to be able to defend yourself. Fortunately, with the above knowledge and the right tools to aid you, you will not have any problems with this common menace.
Do you have any other ideas on what to do about social media malware? Have you encountered any problems yourself? Any stories to share? We would love to hear about them. Please leave a comment below and let us know what you think.
Cassie Phillips is a frequent author and blogger. You can find more of her work at SecureThoughts.
A special thanks to Shawn Tuma for sharing this article. His website is one of those websites that simply impressed me when I first stumbled across it. The content gives loads of new information that inform my technology decisions. Readers will want to check out this recent video blog on cybersecurity and data breaches.
I had the wonderful opportunity to visit with and get to know Kevin O’Keefe (@kevinokeefe) at the State Bar of Texas 2015 Annual Meeting in San Antonio. Kevin is the Founder and CEO of LexBlog, the preeminent source for legal blogging (where I plan to head, one day).
Kevin and I both did presentations during the Ignite Session; Ignite presentations are 20 slides in 5 minutes, with the slides advancing automatically, whether you are ready or not! It was quite a challenge. Following my presentation, Kevin did a brief interview of me using just his iPhone — and it was really cool (and is inspiring me to start doing video blogs – so stay tuned!).
This is a prime example of the challenges that the law has when trying to keep up with evolving technology. The technology wins everytime and then we are left to clean up the mess later.
I read an interesting article that discusses the intersection between social media and cybersecurity. The gist is that the bad guys use information they learn on social media (recall my lessons on business situational awareness) to engage in social engineering / spear phishing attacks based upon that intel. Read more: Why Hackers Love Companies Who Use Social Media.
A Southern District of Texas bankruptcy court ruled that business social media accounts are property that has value and belongs to the subject business. Therefore, the accounts are part of the businesses’ bankruptcy estate and must be surrendered by the businesses’ former owner. The case is In re: CTLI LLC, No. 14-33564 (Bankr. S.D. Tx. Apr. 3, 2015).
Here is a more extensive article about the case but it is behind the Law360 paywall: Social Media Can Be Part Of Ch. 11 Estate, Judge Rules – Law360.
Justice Matthew Cooper, of the Manhatten Supreme Court, made a landmark ruling that permits a woman to serve divorce papers on her estranged husband via Facebook messenger. In this case, it only makes sense to permit this:
- The husband has deserted the wife
- The husband has no fixed address or place employment
- The husband’s only contact with the wife has been via telephone and Facebook
- The wife has been diligent in trying to serve the husband but he has refused to make arrangements to accept service
This is an interesting development in the law. Just a couple of years ago, a Federal judge in New York refused to allow service via Facebook — and I blogged about that case as well as the then-ongoing debate in Texas about a legislative proposal to allow service of legal documents via social media. I am sure we will see more of it as this is the natural trend for the law to take.
Here is a great post by Cordell on a few takeaways from our webinar on social media marketing for lawyers. Check it out and let us know what you think: Simple Ways to Effectively Use Social Media to Help Build Your Law Practice | Cordell Parvin Blog.
Here is the third and final post in my 3 part series on Cordell Parvin’s blog: Lawyers: Simple Ways to Use Social Media Marketing in One Hour: Part 3 | Cordell Parvin Blog.
If you missed them, here are the first two posts:
- Part 2 of Series: Simple Ways to Use Social Media Marketing in One Hour
- Simple Ways to Use Social Media Marketing in One Hour
Here is part 2 of my 3 part guest post series on my coach Cordell Parvin’s blog: Lawyers: Simple Ways to Use Social Media Marketing in One Hour (Part 2) | Cordell Parvin Blog.