A poll of over 1000 people has suggested that more than 95 per cent believe that Facebook should follow Apple’s example and security-check all third party apps running on the site.
IT security product firm Sophos’s survey follows a summer of malicious apps, causing havoc on Facebook, compromising hundreds of thousands of users’ profiles and spreading virally across the network.
"Facebook is much more than a social networking website, it’s a platform with over half a million active applications running upon it," explained Graham Cluley, senior technology consultant at Sophos. "Inevitably some of these applications are written with malicious intent – designed to steal information, spread virally, or spam unsuspecting Facebook users. Anyone can write a Facebook application, and it can be made available to the site’s over 500-plus million users without vetting. It’s no wonder we see so many malicious attacks by rogue Facebook apps every day."
Poll results:
Should Facebook follow Apple’s example, and have a "walled garden", verifying all apps?
Yes, it would be better for security: 95.51%
No, there shouldn’t be restrictions
on what Facebook apps are written: 4.49%
Source: Sophos online survey, 1025 respondents
"Apple has successfully run a ‘walled garden’ on its iPhone App Store, meaning that only approved apps are allowed to be run on the iPhone, iPad and iPod Touch," added Cluley. "Although some people may not appreciate the level of control that Apple has over what apps you can run on your device, it certainly has been instrumental in keeping malicious hackers and malware off the platform."
Every day, says Sophos, it sees new malicious apps on Facebook, that are happily spreading on the social network, compromising users’ profiles and stealing information. Sophos suggests that its poll respondents feel it’s time that Facebook put in place compulsory verification systems for third-party applications, to help prevent security threats.
More information about the threat posed by rogue Facebook applications can be found on Graham Cluley’s blog at:
http://www.sophos.com/blogs/gc/g/2010/10/12/time-facebook
