Facebook Implements New Features to Enhance Security

Recently, Facebook announced some new measures to streamline security.
Bookmark and Share
Albuquerque, NM (prHWY.com) February 2, 2011 - Over the last few years, social media sites such as Facebook, Twitter, LinkedIn and MySpace among others have grown in popularity. The popularity of these sites not only resulted in increased membership, but also resulted in availability of loads of personal information. The utility of the social media sites also encouraged organizations to use them for promotional activities. The easy available personal and business information on these sites have made them the favorite target of attackers. Facebook, in particular has suffered numerous security breaches. Criminals not only create fake accounts, but also attempt to gain unauthorized access to user accounts compromising information security.

Recently, Facebook announced steps to streamline security. Facebook will now be available on a secured HTTPS connection. Users have to enable the HTTPS option available in the account security section of account settings page. The site now provides secured connection to all its pages. The security improvement may prevent attackers from reading the cookies and exploit them to gain unauthorized access. The transmission of information through security socket layer (SSL) may also prevent attackers from hijacking sessions through use of Firefox extension Firesheep.

Users now have the benefit of using one-time passwords, while accessing Facebook accounts from public computers at hotels, airports, colleges, libraries, Internet cafes and wireless hotspots. Facebook users in United States (U.S) can request one-time passwords through their mobile phones. The password is active for 20 minutes. The feature addresses the security concerns on using regular passwords for the Facebook account on public computers.

Information security professionals at Facebook have added another security feature, which offers remote log out facility to users. Through the new feature, users may view the recent account activity under the Account security section of the Account Settings page. The account security section displays the active session, last accessed time, device name, location and the device type.Users may remotely close the session, if they suspect unauthorized use or if they realize they have accessed the site through a friends account and forgot to log out.

Usually, ethical hacking is used to test the security and enhance the strength of the sites. As attackers continue to target social media sites, IT security experts must regularly evaluate the security threats to the site, user accounts, evolve new solutions and mitigate flaws. Improvements in security may facilitate people to continue benefitting from the new mode of social interaction.

EC-Council provides industry training and certification for information security professionals in ethical hacking among many other specializations. "Understanding how hackers exploit these vulnerabilities is a key requirement to hardening software and hardware. That is why EC-Council focuses on ethical hacking as an approach to information security evaluation" as stated by EC-Council's Senior Director, Steven Graham. EC-Council through its Certified Ethical Hacker program has trained such information security professionals from all over the world.

ABOUT EC-COUNCIL

The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. federal government via the Montgomery GI Bill, Department of Defense via DoD 8570.01-M, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted security conferences. The global organization is headquartered in Albuquerque, New Mexico.

Press Contact

Steve Graham
6330 Riverside Plaza Ln NW
Suite 210
Albuquerque, NM 87120
Steve.graham@eccouncil.org
505.341.3228

###

Tag Words: facebook, information security, https, one time passwords, remote log out, security, internet, social media, unauthorized access, flaw, security threats, ssl
Categories: Internet

Link To This Press Release:

URL HTML Code
Create Press Release
Press Release Options
About This Press Release
If you have any questions about this press release, please contact the listed publisher. Please do not contact prHWY as we cannot help you with your inquiry.