Social networking sites used by business professionals are proving that they too are targets for malicious attacks.
LinkedIn, the business networking service, has been the subject of a malicious spam attack aimed at stealing personal information from its users.
The spam e-mail attack, suspected to be the work of ‘Cybercriminals’, against LinkedIn members, contained an alert link with a fictitious contact request. The link redirects victims to Google, but during this time the victim’s PC is infected with data theft malware.
Organisations need to develop policies, procedures and guidelines regarding Social Networking sites as part of their Information Assurance Programme.