Hackers Could Gain Control of Your Computer Through Facebook

Posted by Anthony LaFauce on February 1st, 2008 10:07 AM

Gregg Keizer, of ComputerWorld, is reporting that a serious security flaw in ActiveX, the Microsoft software that controls social sites like Facebook and Myspace, can be used by hackers to penetrate unsuspecting users’ computers.

The hack itself comes from a similar product that Facebook and Myspace use to upload images from Internet Explorer. These image loading tools are based on a commercial product from a company named Aurigma Inc who stated they were expecting to fix the bug in a few hours.

The actual details of the hack are far more mundane when compared to something you might see in a movie involving a super computer called WOPR, but the emergence of this hack brings some interesting questions to light.

According to the report the bug was patched last November by ActiveX 5.0 but only coming to light today from releases attributed to major security firms. Keep in mind programs like Secret Crush, and one has to begin wondering about security from social networks on another level.

Hackers look for easy targets and lots of them. Sites like Facebook and Myspace offer hackers a target rich environment. Think about the population of Facebook, most are causal computer users, who turn to social networks as a way to relax.

We all know about Phishing and spyware that litter the internet, but if hackers begin to exploit more and more holes in Facebook will its users turn away? If you suddenly began getting viruses from Facebook would you still use the service?

Update:

Shortly after this post I received official word that both Myspace and Facebook were working on the problem.

“MySpace and Facebook are firmly committed to keeping all users as safe and secure as possible. Recently, the companies were alerted to a vulnerability in Aurigma Imaging Technology’s software that could potentially put certain users with Windows-based systems at risk. Immediately after identifying a solution Facebook, MySpace and Aurigma collaborated to resolve the issue and are working to individually alert users of any additional steps that need to be taken to ensure user security.”

I had no doubt that all parties involved would work quickly to solve this potential problem. It is important to remember, if there is something good out there that people like to use, other people will try to destroy it. I commend all three companies on working together to try to solve this problem quickly and correctly.

This entry was posted on Friday, February 1st, 2008 at 10:07 am and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Viewing 3 Comments

Yatti 8 months ago 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

Active X!? Yikes.. Another reason to stay away from Internet Explorer?! Would a user using Firefox be affected?

reply edit flag record video comment

Wendell Dryden 8 months ago 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

ActiveX! Again?!? Still?!? Geeze. If I started having computer troubles of any kind due to Facebook, I'd drop it in a flash. Well, unless it had to do with that juggling game.

reply edit flag record video comment

zblmw 2 weeks ago 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

珠宝联盟网

中国珠宝联盟网(zblmw.com)是一家服务于中国大陆及全球华人社群的领先在线珠宝媒体及增值资讯服务提供商。中国珠宝网站拥有多家地区性网站，以服务大中华地区与海外华人以及珠宝企业为己任，通过为广大网民和政府企业用户提供网络媒体及娱乐、在线用户付费增值/无线增值服务和电子政务解决方案等在内的一系列服务。

专业珠宝门户——中国珠宝网站预计2008年在全球范围内注册用户超过500万，日浏览量能最高突破8000万次，将成为中国大陆及全球华人社群中最受推崇的行业互联网品牌。

高效的整合营销服务——凭借领先的技术和优质的服务，中国珠宝网站会深受广大网民的欢迎并能享有极高的声誉。

http://www.zblmw.com

reply edit flag record video comment