Blog

Privacy in Facebook apps — the risk of the SuperPoke

The social networking site Facebook has been under scrutiny lately for lax security with its applications feature. Applications in Facebook are created by third-party software developers and are run on third-party servers. These applications can take many forms – a quiz, a game, or just another way to reach out to friends – but the common feature in all is that they allow software developers to access Facebook users’ personal data.

Read more

Because not every frog is a prince

Last year, IT security firm Sophos ran an experiment on Facebook to demonstrate just how willing people were to hand over their information to potential ID thieves. They created a fake profile page on Facebook for a small green plastic frog and sent out 200 friend requests to other Facebook users. Eighty-two of those people responded, and in doing so, divulged personal information like their email address, birthdate, workplace or school location, and phone number – all useful details for the aspiring identity thief.

Read more

A new year’s errand list

As we close out 2007, we’d like to sound a note of caution for privacy rights in Canada. We are lucky to have a variety of protections for personal information and data at the territorial, provincial and federal levels. Nevertheless, the Commissioner took a moment last week to highlight some of the steps that need to be taken by individuals, corporations and the government in the face of continuing challenges:

Read more

Not all data breaches are caused by fraud

This week, we’ve been speaking to the mediaFootnote 1 about an incident at the Passport Office: a person using their online application form found that they could access others’ personal documents by changing one variable in the URL displayed in their browser. The Globe and Mail and Slashdot report that this was likely the result of an error in the code behind the web page – or an omission in the code.

Read more

Showing items 21 through 28 of 28.

Date modified: