Suchen:

How Safe are the new Facebook Messages?

von Markus Hegi

Facebook heavily advertises its new private messaging features. But how safe are these messages? The many current hacking cases and a recent NZZ article about fake identities with FB messages made me think, and the below experiences leaves some doubts: is it possible, that FB messages are read by someone else? What are your views?

We were looking for a new name for followerrate.org. We are extending features and the current name doesn’t fit anymore. After a brainstorming a small group of us decided to go ahead with one name. I wanted to double check the name with @hofrat – he knows followerrate well & I wanted an outside opinion on the name. I DMed the name to him, and for clarification, I wrote him a Facebook message & explained him the changes & extensions of services we are working on.

Someone else registered the Twitter name

Tuesday morning, we started the registration process and were very surprised, that the Twitter handle was not available anymore: A new account was created just a few hours after I sent the FB message.

What may have happened?

– It can probably not be a coincidence –
– The second thought is, that an employee of us (Colayer India) registered or leaked the name. For a number of reasons I think this is unlikely. Only a few knew about it. And it would not be of any use to them, as they know, that we would not go ahead without the twitter handle. Also, the registration time was 2.45am local Indian time – unlikely, as all of them were at work in the morning.

– More likely is a registration in Europe (23.15) or US (early evening). But neither me nor @hofrat talked about the name with anyone else.

– Or is it possible, that someone else, a spammer or hacker has read the twitter DM or the FB message? – In my FB message, I mentioned that we plan to register the url, but nothing about Twitter. A reader could  have thought, it would be smart to register the Twitter handle – If he would have registered the url, we would probably have gone for a different name. A plan could have been, to let us build our app on the new name & then sell us the Twitter handle, or use it for spamming.

But is this likely? –

Just a few days ago, @hofrat was the target of a spammer attack – a different case and probably not related – but the amount of recent cases in the world as well as in my network is increasing: and most of the cases are not even public!

Access to message content is not just possible, if someone has a password or a troyan. Also some FB apps are able to read messages in inboxes – Which gives employees (and alumnis?) not only of Facebook, but of many app companies the possibility to get access to messages – Could it be that someone scans messages & tries to use information? –

What would you do?

The twitter account is registered without any public information. No tweets, no bio, no location, no following, no followers. Would you contact Twitter and try, if they re-assign the handle to us? Or would you contact both, Twitter & Facebook because there may be hacking involved, and ask them to investigate the case further? They could see the IP & location of the registrant & ev find out his identity – and in case it was an employee or someone related to us, we should know! –


yigg this! yigg this!save to del.icio.us save to del.icio.us

18 Kommentare zu “How Safe are the new Facebook Messages?”

  1. Markus Hegi schrieb:

    Kommentare natürlich auch gerne in Deutsch …

  2. Mugdha schrieb:

    Could this be possible that the something keeps track of searched for but yet unregistered twitter handles? And create bots by registering such handles?

    This approach is much more simpler than hacking email a/cs, because twitter search automatically shows matching search strings typed by others.

  3. hanswurst schrieb:

    which site did you use for domain research? could be a known or unknown leak there too.

  4. Markus Hegi schrieb:

    We used http://register.com & http://switch.ch for research of names and we searched in google & twitter – ‘search for’ in twitter & google is not public information, I guess so (or can you get access to that?)

    The problem with Twitter handles is, that they are free – and you only need a valid email id, which is free too –
    hence, someone can register a bulk of handles, which he may automatically retrieve out of databases, messages etc – search results too are a source for that (register.com employee) …

    I guess Twitter should be able to find out about this by verifying the person behind the handles – Even though that needs some time & admin, Twitter should cancel / re-assign handles on request – which Twitter does already today, if there are trademarks or copyrights –

    I have placed a request, lets see if & what Twitter will respond –

  5. Daniel Niklaus schrieb:

    Ich würde die einfachste Antwort nehmen. Zufall.

    Sonst hätte ich einen zweiten Namen gewählt und dasselbe Spiel nochmals gespielt. Wäre er wieder weg gewesen, dann…

  6. Markus Hegi schrieb:

    Maybe an answer to our problem? – According to this, the domain name info leaked out at the domain registrar:

    http://rossduggan.ie/blog/technology/bots-are-crawling-new-domain-registrations-and-namesquatting-twitter-handles/

  7. Vender Ouro schrieb:

    Wonderful items from you, man. I’ve take into accout your stuff prior to and you’re simply too excellent. I actually like what you have got here, really like what you’re stating and the way through which you assert it. You make it entertaining and you still care for to stay it wise. I cant wait to read far more from you. That is actually a wonderful website.

  8. hack facebook password no surveys free download) 2013 schrieb:

    hack facebook password no surveys free download) 2013

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  9. prezzi sigaretta elettronica schrieb:

    prezzi sigaretta elettronica

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  10. astuces naturelles schrieb:

    astuces naturelles

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  11. pennsylvania arrest records schrieb:

    pennsylvania arrest records

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  12. bodycon bandage dresses for sale schrieb:

    bodycon bandage dresses for sale

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  13. beneficial financing country wide homeloans low interest rate card t1 load balancing federal student loan refinancing fort worth auto california auto insurance online motorized patio awnings card credit debt management uk portable color printers lump sum schrieb:

    beneficial financing country wide homeloans low interest rate card t1 load balancing federal student loan refinancing fort worth auto california auto insurance online motorized patio awnings card credit debt management uk portable color printers lump…

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  14. voucher code usc schrieb:

    voucher code usc

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  15. shore-215.blogspot.ae schrieb:

    shore-215.blogspot.ae

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  16. cheap electricals review schrieb:

    cheap electricals review

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  17. electrical jobs in kent england schrieb:

    electrical jobs in kent england

    Internet Briefing Blog / How Safe are the new Facebook Messages?

  18. john louis closet installation video schrieb:

    john louis closet installation video

    Internet Briefing Blog / How Safe are the new Facebook Messages?

Schreibe einen Kommentar

*Required
*Required (Never published)
 

Recent Artikel

Recent Kommentare

Letzte Trackbacks