Friend-in-the-Middle Attacks: Exploiting Social Networking Sites for Spam

Friend-in-the-Middle Attacks: Exploiting Social Networking Sites for Spam

Friend-in-the-middle attacks on social networking sites can be used to harvest social data in an automated fashion. Attackers can then exploit this data for large-scale attacks using context-aware spam and social phishing. The authors prove the feasibility of such an attack and simulate the impact o...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE internet computing 2011-05, Vol.15 (3), p.28-34
Hauptverfasser: Huber, M, Mulazzani, M, Weippl, E, Kitzler, G, Goluch, S
Format: Artikel
Sprache:eng
Schlagworte:
Automated
Cloning
Computation
Computer simulation
Data mining
Facebook
Feasibility
Internet
Internet computing
Networks
phishing
Security
Social network services
Social networking sites
spam
Spamming
Unsolicited electronic mail
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Friend-in-the-middle attacks on social networking sites can be used to harvest social data in an automated fashion. Attackers can then exploit this data for large-scale attacks using context-aware spam and social phishing. The authors prove the feasibility of such an attack and simulate the impact on Facebook. Alarmingly, all major social networking sites are vulnerable to this attack because they fail to appropriately secure the network layer.
ISSN:1089-7801
1941-0131
DOI:10.1109/MIC.2011.24