Social Gaming Emerges as Security Threat

Michael Vizard

As social networks evolve, one of the more popular things to do on them is to play games such as Farmville, Mafia Wars and Castle Age. While these games are no doubt fun, they present cyber-criminals with a new opportunity to gather a treasure trove of personal information about users that can be used in social engineering scams.

According to Catalin Cosoi, a senior researcher at BitDefender, a provider of security software, cyber criminals now set up fake identities to engage people who want to play social gaming applications. As they gather information about the players, that data is then used to create phishing attacks that lure unsuspecting users to sites loaded with malware by including personal information about the user that theoretically only someone who knows that user would have been able to access.

Cosoi says social gaming is only one example of how social engineering threats are evolving on social networks. Cyber-criminals are creating hoaxes and fake movements that are all designed to entice users to join a friends list, or click through to a URL outside of Facebook. In addition, there is now malware, such as Koobface, that has been specifically designed for distribution across social networks.

Unfortunately, these types of attacks are just beginning. There are 350 million users of Facebook alone, and 7 million businesses have a presence on Facebook. With that kind of population, social networks are rapidly becoming the preferred platform for collaboration, but also the distribution of malware.

Malware, like any disease, proliferates anywhere that human beings gather. We take measures to protect public safety to stop the spread of infectious diseases. It's now time to start applying some of those same types of concepts in cyberspace. Don't friend anybody without actually verifying via a third party that your new friend is really a person, and not a botnet trying to lure you into a cyber trap.

Add Comment      Leave a comment on this blog post
Apr 20, 2010 12:06 PM Romadome Romadome  says:

I think one of the biggest questions raised by the social gaming and networking security threats that are emerging is whether the operators of networks such as Facebook have a legal and ethical responsibility to ensure the safety of their constituents from malware and other potentially harmful software that might use their networks as a conduit.

Sep 28, 2011 11:41 AM Davie Alvin Davie Alvin  says: in response to Romadome

There are a lot of social networking sites that provide users with a variety of online multi player games. I used to play Galactica game and made a lot of friends in my guild. But I now realize that I shouldn't have presented anyone from the online environment any of my personal data, e-mail, location and such. This information can be used to spam or lure me to mall ware sites. It's best not to share your personal data online because you can't really ever know on who's hands it will end up.


Post a comment





(Maximum characters: 1200). You have 1200 characters left.



Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.