Exploit code affecting an unpatched flaw in an image uploader used by both Facebook and MySpace is circulating publicly, putting users of the social networking sites at risk, according to security researchers.
Social networking sites have exploded in popularity in recent months and have become accepted as business tools in some quarters, leading to security concerns.
In December, WorkLight released a tool designed to allow companies to provide employees with access to Facebook while ensuring the social network is run from behind secure corporate firewalls.
Earlier in 2007 Sophos found that Facebook users are too gullible in giving up personal information, making them targets for identity theft.
Full article available from PC World online: – http://www.pcworld.com/article/id,142109-pg,1/article.html