Social Networking Spam
by Blight Crusader
MySpace’s chief security officer is quoted today in USA Today proudly saying: “Today we are declaring victory in the war on spam and phishing.” Later in the article, we find out that they are merely claiming to have reduced spam, from 49% to 99.5% (depending on the type). I’m not so sure that’s exactly “victory,” myself.
I found Investors Business Daily a bit more believable on the subject, though. In an article which gives an overview of the scope of fraud, they write:
More than 1.2 million people filed a complaint of fraud, identity theft or a related act to law enforcement or regulatory agencies in 2008, up 16% from a year ago, according to the Consumer Sentinel Network, a branch of the Federal Trade Commission. Financial losses came to $1.8 billion, or about $3,400 per victim reporting a financial loss. Losses of $1 million or more were reported by 257 people.
Identity theft was the top complaint, named by 26% of the complainants. Credit card fraud was the most common form of identity theft, at 20%. Most fraud victims said the initial contact with the crooks came through e-mail or Web site visits.
Despite these numbers, security experts note that many victims don’t report the crime, perhaps because they’re embarrassed.
“It’s underreported, especially in the business world,” Schmugar said. “They don’t want to talk about it.”
According to research firm Javelin Strategy & Security, in 2008 about 9.9 million U.S. adults were victims of identity fraud, up 22% from the year before. It pegs the total loss at $48 billion. Most incidents were the result of lost or stolen wallets, checkbooks and credit cards, but online access accounted for 11% of the total.
And the threat is rising. Message Labs, a unit of security software firm Symantec, (SYMC) said attacks targeting social networking sites became widespread in 2008. Crooks are having more success stealing private data, security experts say, partly because of the comfort and trust people have had putting all manner of information about themselves on social networking sites.
“People are leaving digital footprints on a daily basis,” said Steven Domenikos, chief executive of IdentityTruth, a provider of fraud and security protection. “It’s become in vogue to divulge this information online.”
And more is at stake than someone billing your credit card, he said. It’s possible to access someone else’s birth certificate by requesting it over the phone without the provider verifying the person’s true identification, he says. With that, crooks can get a driver’s license. Also, millions of social security numbers are acquired illegally and sold online. Using information obtained online, thieves have filed and claimed tax rebates owed to someone else.
While it is nice that someone employed by MySpace thinks he’s conquered spam, I am much more inclined to trust third-party security watchdogs for data on the true scope of the problem. Someone without a vested interest, in other words, in what the numbers have to say for any particular company.
Tags: MySpace, social networking, spam
