Keep your firewalls, anti-virus and anti-spyware symstems updated

Social networking sites have drawn millions of teens and adults hoping to find real friends in a virtual world. In the process, they have also attracted spammers, hackers and other Internet villains who become bogus friends trying to make real trouble for legitimate users. And, experts warn users, this is only the start.

Tech security experts say identity thieves are now targeting social networking sites with increased frequency. Direct spam messages to personal computers have become less successful as users are now more skeptical and anti-spam filters have improved. Scammers have invaded social networking sites to exploit the environment of trust that unites friends in these online groups.

Towards the end of 2007, according to a leading tech security company, over 90 percent of fictitious U.S.-based websites employed in phishing attacks did so by copying the log-in pages of two unidentified social networking sites.

There are many attempts to obtain information of financial interest to the scammer. Other identity thieves may have different objectives: there are an increasing number of cyber-bullies who use the accounts of other users to spread spiteful rants to the user’s list of friends or just do malicious mischief. Such vicious things broadcast on the social networking sites have led to teenage depression and tragic suicides.

But the objective of financial gain continues to be paramount. Their ingenious methods include:

* They may offer free widgets, purportedly to enable users to enhance profile pages. They then take the log-in information and use it to spam the user’s friends.

* They install keystroke-recording software and use it to illegally obtain financial information.

* They take personal details posted on the social network site profile and use these to craft legitimate-sounding e-mail fraud attempts.

* They create fake profiles on social networking sites and start inviting other users to become their online friends.

Researchers have found targeted spam attacks from ‘credible’ contacts very effective. Indiana University researchers gather contact information about Indiana students by crawling through social networking sites and sent e-mail made to look like messages from a fellow student and also different e-mail coming from strangers.

Close to 72% of e-mail recipients from the ‘fellow student’ clicked on the link provided in the message and provided their university user names and passwords at the fake website. But the recipients of e-mail from strangers were more guarded and only 16% responded.

The most vulnerable are those who don’t have updated firewalls, anti-virus and anti-spyware systems on their computers. But, as the Indiana University research proves, those who click the wrong link can be victimized.

Safety Tips:

* Limit information provided on your profile. The ‘bad guys’ can use this information in ways you haven’t dreamed of, so limit access and minimize the data you put on the profile.

* Do not depend on the Web sites. Social networking sites are trying to strengthen their security systems, but the bad guys are also working hard. In the end, you must shoulder responsibility for your own security.