Facebook Implements New Features to Enhance Security
Recently, Facebook announced some new measures to streamline security.
Recently, Facebook announced steps to streamline security. Facebook will now be available on a secured HTTPS connection. Users have to enable the HTTPS option available in the account security section of account settings page. The site now provides secured connection to all its pages. The security improvement may prevent attackers from reading the cookies and exploit them to gain unauthorized access. The transmission of information through security socket layer (SSL) may also prevent attackers from hijacking sessions through use of Firefox extension Firesheep.
Users now have the benefit of using one-time passwords, while accessing Facebook accounts from public computers at hotels, airports, colleges, libraries, Internet cafes and wireless hotspots. Facebook users in United States (U.S) can request one-time passwords through their mobile phones. The password is active for 20 minutes. The feature addresses the security concerns on using regular passwords for the Facebook account on public computers.
Information security professionals at Facebook have added another security feature, which offers remote log out facility to users. Through the new feature, users may view the recent account activity under the Account security section of the Account Settings page. The account security section displays the active session, last accessed time, device name, location and the device type.Users may remotely close the session, if they suspect unauthorized use or if they realize they have accessed the site through a friends account and forgot to log out.
Usually, ethical hacking is used to test the security and enhance the strength of the sites. As attackers continue to target social media sites, IT security experts must regularly evaluate the security threats to the site, user accounts, evolve new solutions and mitigate flaws. Improvements in security may facilitate people to continue benefitting from the new mode of social interaction.
EC-Council provides industry training and certification for information security professionals in ethical hacking among many other specializations. "Understanding how hackers exploit these vulnerabilities is a key requirement to hardening software and hardware. That is why EC-Council focuses on ethical hacking as an approach to information security evaluation" as stated by EC-Council's Senior Director, Steven Graham. EC-Council through its Certified Ethical Hacker program has trained such information security professionals from all over the world.
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. federal government via the Montgomery GI Bill, Department of Defense via DoD 8570.01-M, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted security conferences. The global organization is headquartered in Albuquerque, New Mexico.
6330 Riverside Plaza Ln NW
Albuquerque, NM 87120
Tag Words: facebook, information security, https, one time passwords, remote log out, security, internet, social media, unauthorized access, flaw, security threats, ssl