DygiScape

Web Communities Need Transparency (and some tips on how to be transparent)

The last time I saw Chris Pirillo was probably 1998 on TechTV (before they were later acquired by G4TV). That’s a long time, but I encountered an interesting video blog entry (vlog) that he did discussing the transparency of online communities. The principles he discussed are useful for social networking leaders, social media experts and online media mavens to embrace as they build and facilitate online community. More »

Consumer Advocacy: MySpace AMBER Alerts

I logged into my MySpace account and discovered an AMBER Alert located at the top, center of the dashboard. While it appears they deployed this system earlier this year, I’m glad to see it in action. I’m also pleased to see safety leveraging social media, instead of criticizing it. More »

Argh! Feeds, Feeds and More Feeds (But Not Quite Enough…)

While some people are rejoicing that Facebook offers the ability to import content into your feeds for your friends to devour, I tend to disagree with the hype. It’s my belief that by offering a limited set of feed imports, you are just hurting your own social network appeal. More »

VA Requires Students to Learn Online Safety

Virginia, the state that houses NCMEC and AOL, has enacted a policy that schools must now facilitate classes that help keeps kids safe on the Web. Before I shoot it down, I want to say that this is a step in the right direction; I just don’t believe that the fear of online predators is all that realistic. More »

Some Thoughts on Community Moderation

It’s probably a good time that I share my thoughts on the tireless debate surrounding online community moderation of user contributed content — what works, what doesn’t and what the future holds for moderation of the Web. More »

Facebook Spam: You’ve Got to Be Kidding, Right?

I have a new friend — or do I? After I logged into Facebook, I was presented with a rather nice looking female who found me and wants to be friends. Oh, joy!
More »

Problem: Social Network Status Discombobulation

Is it me, or is it becoming a chore to do maintain your presence on social networks?

I regularly use MySpace, Facebook, AIM Profiles, Twitter, LinkedIn, Friendster, Emurse among a few others. Why can’t all these networks get along and share my status with all my connections?

More »

Social Media Frustrations: Spam, Spam and More Spam (on Social Networks)

Continuing my mini-series on social media frustrations, I’d like to talk a bit about spam that’s found on social networks. It’s a problem that has perplexed MySpace (which has been a tug o’ war for AOL, too); since they want to make it easy for users and promote engagement. I have a little insight, since at AOL I whacked thousands of spammers at a time and enjoy every bit of it.

More »

Free, Legal P2P Music …Just Kidding.

QTrax is a startup that allegedly had agreements with three large record labels to allow legitimate, free and legal music downloads for users via Peer to Peer (P2P) technology. The blogosphere buzzed about it, then once they found out the deals fell through, the recanted twice as fast.

[Qtrax Really Blows Its Launch, Link via Techmeme]

However, this small battle doesn’t justify declaring a total loss on the war against consumers with digital media. I think this illustrates that there’s still a strong interest among internet users to acquire legally-obtained music for free, in exchange for advertisements being shown. This service would be a direct threat to Apple’s iTunes, but I imagine that it would allow music companies to capture lost revenue from otherwise illegal downloads.

The main problem, which I can understand, is lack of accountability. Most numbers that are tossed around are purely anecdotal and speculative — think of “cooking the books” — in favor of getting deals from record companies. From the record company’s perspective, they’re spending money to “invest” into a new media with minimal proof that it made profit. At least with iTunes, they can keep track of inventory. Much like in court, prosecutors can’t prove that you didn’t do something, only that you did beyond a reasonable doubt.

I conclude with the fact that consumers are still in control. Music lovers will declare whether it’s profitable to go free. Users are ultimately the ones who pay. Is free P2P music sharing doomed, or is there still an opportunity yet to be seized?

The Largest Threat to Social Networks, Yet to be Resolved

What annoys you more on social networks? Spam friend requests, spammy comments or other junk? Well, that’s nothing compared to malicious Windows exploits being used to dupe MySpace users now. However, this raises interest into the larger problem at hand: Users are still naive/vulnerable to phishing, ten years after it’s peak.

A lot of social networks provided have absolved the password cracking problem (for now) with CAPTCHAs. (CAPTCHAs are images that are distorted to prevent bots from brute forcing their way into accounts.) However, there are several other ways that innocent Web users are being compromised — and don’t even know it! I’m fairly certain that social networks have taken the necessary steps protecting their facility, the user data and educating their employees, but who’s left? Users.

Users are constantly being phished for their accounts. The social connections (and trust) that users on social networks offers a very high value for professional phishers. Phishing relies on trust, and thus compromising one account enables half the work to be done. There’s very little that networks have done to inform users, from my analysis. Networks haven’t done enough to educate users on the behavior or the actual functions of their Web site, they cite to simply not give their password out. This results in a lot of account being compromised, spreading more malicious content, thereby threatening the network even more.

(Well, duh, no one just gives their password out, silly.) The problem is a lot of the phishing URLs used to prey on users are aimed in looking at their photo albums or some wild video. Everyone loves to look at pictures or video, it’s what we do online. When the victim clicks the link they are prompted with a fictitious login window to see it. Bam! The account is compromised, and guess who will be posting the spam link next?

It’s exploitation of word of mouth marketing (viral) and abuses the trust that people forged on these social networks. That is, if someone trusts their best friend, they will automatically open the link without questioning its cause or basis. Understand my spirit in this: Users aren’t stupid, they are human. Human problems require human solutions to address them.

Honestly, the best thing a social network can do, is educate users — from day one — on proper account security practices. That is, inform them on various ways to check the legitimacy of messages, educate users to receive security updates from their OS, recommend secure Browsers like [gasp!] IE7 or Firefox, and be their advocate in addressing spam and viruses. Don’t wait until you shut their account down to educate them because their primary objective is to get back online to chat with friends, not heed security warnings.

What makes this the largest threat to social networks? Phishing threatens users, data integrity, and users’ trust of social networks. There is very little networks can do to address the problem other than blacklisting IP addresses (which can be obfuscated with proxies), blacklisting URLs that gain popularity quickly (moderate URLs being posted), and simply educating users. There are many drawbacks to any step they take, mainly resulting in false-positives.

Do you run a social network? What steps are you taking to secure it from phishers?

Also check out Help: What to Do if Your MySpace Account is Phished at DygiScape and MySpace: Your Account Has Been Phished!