Sunday, October 30, 2011

Facebook: 600,000 logins are compromised on a daily basis

Fun stuff, for Facebook users. Facebook quietly this week said that 600,000 Facebook logins are compromised daily.

The info was somewhat hidden in a new security announcement issued by the social networking giant on Thursday, which described the value of its new "Trusted Friends" password restoration technique. Sophos first noticed the info, which was couched in a rather casual way.

The information actually wasn't highlighted in the announcement at all, but instead in an easily skipped infographic attached to the post. It says that "only 0.06 percent of 1 billion logins per day are compromised."

That is a small percentage, but numerically, quite large. 0.06 percent of 1 billion logins equals 600,000 logins. Note, however, that Facebook users the term "logins," not accounts, so the number could include repeated break-ins at the same account.

Sophos' Graham Cluley wrote, in a post about Facebook on Friday, "If an unauthorized party has logged into your Facebook account, then you're far from alone." Small comfort, for those who might share way too much information on the Facebook accounts.

The "Trusted Friends" restoration technique works as follows: you nominate three to five "trusted friends" who can help you restore access if for some reason you are locked out of your account. An example might be if someone has hacked the account and changed its password, and at the same time locked you out of your email account. Since you can't access your email account, Facebook will send codes to your friends that they can pass on to you.

Protect Your Computer FilesNone of them on their own will have the ability to unlock your account. On the other hand, here's a thought: why wouldn't the miscreant who snagged your Facebook account immediately change your Trusted Friends list?

Oops.



No comments: