Fake friends: This screenshot shows real users who befriended a bogus Facebook user created by George Petre and colleagues.
BitDefender
They get results by exploiting a social network's trusting environment.
As users have flocked to social networks, so, inevitably, have spammers. And according to a recent experiment, users are much more receptive to spam sent via a social network than over e-mail.
A group led by George Petre at BitDefender, an antivirus software company based in Bucharest, Romania, performed an experiment to test the effectiveness of spamming techniques geared toward a social networking site. They found it surprisingly easy to entice Facebook users to "friend" people they didn't know; they also found that many users were willing to click on links without knowing who sent them or where they led.
Speaking last week at the MIT Spam Conference in Cambridge, MA, Petre described how spammers exploit social networks via messaging systems by enticing users to click on links, and by gathering personal information to target mail-outs.
Most social networks have internal messaging systems for communication between members. Petre's group examined that of Facebook, which boasts 5 percent of the world's population as its users. While Facebook has an antispam engine, the group found that it was better at filtering out phishing e-mails than preventing spam messages from getting through.
The group started by creating fake profiles to trick users into friending them. They created three profiles, one containing almost no information about the user, one with some information, and one with detailed information. They used those profiles to join popular groups and began sending out friend requests.
Within 24 hours, 85 users had accepted a request from the first profile, 108 from the second, and 111 from the third. Petre says that acceptances began to accelerate, since more than 50 percent of the time, users would accept the request if they shared a "mutual friend" with the fake profile. In some cases, he says, users would send a message asking for more information about how they knew this supposed new friend. The researchers didn't respond to these requests, but in many cases, Petre says, users accepted the request anyway.
The researchers then posted a link without any explanation to the fake profiles' walls, using a URL shortener to obscure where the link went. Almost 25 percent of the profiles' "friends" visited the link, Petre says.
Buying habits revealed via social networks could predict whether a product takes off or not.
Mobile carriers might get marketing insights from studying whom you call and what device you use.
Approach could help software learn how to identify fake accounts with less honorable intentions.
Manufacturing in the United States is in trouble. That's bad news not just for the country's economy but for the future of innovation.
Our list of the 50 most innovative companies, including the following:
On Twitter
Become a Fan on Facebook
Subscribe to the Feed
jomar487
1 Comment
The ultimate solution for blocking spammers and fake profiles.
Integration4us created a spammers blocker based on minFraud, using sophisticated solution to ensure your website is not farming spammers
What is minFraud?
minFraud is the proprietary online fraud detection service that combines the GeoIP® technology with other proprietary developed order variable checks, such as open proxy detection. The minFraud service can provide all the information obtained during manual verification and additional information in less than one second. Merchants can use the minFraud service to speed up manual order verification, automate order process by using the risk scores, or customized scoring system with the information that minFraud provide.
What is the minFraud Network?
Since the minFraud service is a hosted solution, it connects and consists of all the e-commerce businesses who are currently using the minFraud service. Currently, more than 6,000 e-commerce businesses are protected by the minFraud service through our client and partner networks. By combining feedback and resources from the minFraud network and delivering new features designed to combat emerging fraud trends, minFraud are able to help merchants reduce chargebacks effectively.
Why join the minFraud Network?
Businesses may prefer to have an in-house screening system, but a hosted service has advantages over an in-house system. While in-house fraud screening systems may be effective, over time, fraudsters will figure out a way to circumvent the security measures. Being part of the minFraud Network allows for a more dynamic and adaptive approach to fraud detection through the idea of mutual protection. For example, if minFraud detect suspicious activity from an IP address, it will be flagged as high risk throughout the network in real-time. Feedback from merchants will serve as a warning signal to all others within the network. For that reason, the minFraud service can complement existing in-house fraud checking systems very well.
http://www.integration4us.com/minfraud-social-network-sites/
Reply