Facebook Security Best Practices

JavaScript is disabled on your browser.

Facebook security chief departing company for Stanford
Who can contact me? Similarly, he reportedly left Yahoo after the company agreed to create a tool for the US National Security Agency that would scan select users' emails. The App Secret The App Secret is used in some of the Login flows to generate access tokens and the Secret itself is intended to secure usage of your App to only those that are trusted. What's Security Checkup and how do I start it? Here is what you need to know - and how to protect yourself: While such limitations are obviously good news that reduces the scope of the problem, the risk is still serious for the reasons that I mentioned above.

Security Checklist

Login Security

These sites frequently update their policies, and given the issues that have arisen in the past year, it falls on us as users to hold a healthy level of skepticism when engaging with social media and educate ourselves about the ever changing state of privacy and social media.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. We also use some non-essential cookies to anonymously track visitors or enhance your experience.

To control third party cookies, you can also adjust your browser settings. We also use other cookies to track visitors or enhance your experience. Proven unified threat management leader. Web security, control, and insight. Secure Unified Endpoint Management. Full-disk and file encryption. Block phishing, spam, and malware. Phishing email simulation and training. Intercept X for Server. Cloud and on-premises server protection. Powerful platform for centralized security management.

Advanced cybersecurity, web filters, and virus removal for home computers. Computer, mobile, and network security, all entirely free to use. Embrace IT initiatives with confidence. Helping you to stay regulatory compliant. Trusted by world-leading brands. Your peace of mind. Stronger, simpler cloud security.

All product trials in one place. Start a demo in less than a minute. As reported by Kashmir Hill, Facebook has apparently been using the location of people's smartphones to make friend suggestions, suggesting to people to "friend" others who have used the Facebook app in similar locations. While this might seem like a valuable feature - if you cannot remember the name of someone whom you met at a party or networking event, for example, having Facebook suggest him or her as a friend might be wonderful - it can have terrible consequences as well.

Should people who are in the same waiting room at a doctor's office really be suggested to one another? How many people have met others at parties whom they are literally afraid to meet again?

Should criminals who were arrested and brought to police stations be presented with the arresting officers' Facebook profiles? There are countless other examples. The risk of unintentional disclosure of information via social media is not new; in a patent filing made back in - for a patent, which was, ironically, issued just days before Hill's article - I wrote that "Information that can be extrapolated from what the user may think are innocuous postings, settings, or other aspects of social media can be seriously damaging to the user.

According to Hill's article, Facebook has "flip-flopped" as to whether it actually uses people's physical proximity to make friend suggestions. There seems to be anecdotal evidence, even if not verifiable, however, that, at least in the past, it has done so. As such, what should you do to prevent Facebook from providing "too much information" about you via the suggested friends feature?

Until Facebook clearly guarantees that it will not utilize your location for such a purpose I strongly suggest turning off Facebook's access to your location data. That can be done in the Location Settings for your smartphone or mobile device. As was reported in several venues, links transmitted in Facebook "private messages" i. This is a serious problem for several reasons:. Some links inherently contain confidential information. Do people asking a trusted friend or relative about abortion providers or for advice regarding an illness or a troublesome child really want the world to know about what they are seeking advice?

In some cases the information in question might even be protected by confidentiality agreements, privacy laws, or compliance regulations. Some links contain the equivalent of passwords - links to non-public files on file sharing services e. Unauthorized parties obtaining such links could potentially access information, photos, and videos to which they are not supposed to have access, and over which the user has an expectation of privacy and security.

I should note that while the vulnerability in question allegedly allows registered Facebook Developers to access other people's private messages via special types of queries, it does not allow typical Facebook users to see the messages.

The complete guide to Facebook security, so you can master your profile safe and secure