EU web security watchdog sets sights on 'MySpace'

EU news & policy debates
- across languages -

Click here for EU News
on the EurActiv Network »

Bulgaria News

Turkey News

Germany News

Spain News

France News

United Kingdom News

Poland News

Czech Republic News

Slovakia News

Hungary News

Romania News

Serbia News

Greece News

Italy News

Tuesday 14 February 2012

BROWSE ALL SECTIONS

NEWS
Airlines set to win carbon credits from biofuel flights
The European Commission has asked airlines to report on "the amount of biomass" they use so that biofuels can be accounted as "zero emission" in the greenhouse gas emissions reports they are requested to produce each year under the EU's carbon scheme for the aviation sector.

News | Commission deplores Serb's Northern Kosovo referendum
News | Gazprom to double its European gas storage capacity
News | Web giants in silent battle for 'social search' supremacy
News | EU strategy seeks brisk development of bio-economy
News | Parliament watches as ministers debate EU energy savings bill
Hot topics
SPECIAL REPORTS
Special Reports
LINKSDOSSIERS

Smart grids: Making connections
EU plans to move towards a low-carbon economy depend upon a transformed cross-border transmissions system that can integrate renewables and smart meters alike, offering energy consumption savings at source. But is Europe on track to meet the challenge?

LinksDossier | The Danish EU presidency: Bridge over troubled water
LinksDossier | EU-Ukraine relations: A geopolitical test
LinksDossier | Europe's new treaty: Towards a multi-speed Union
LinksDossier | CAP reform 2014-2020
LinksDossier | Cybersecurity: Protecting the digital economy
INTERVIEWS

Renewables chief: 2030 targets are 'a must'
Arthouros Zervos, president of the European Wind Energy Association, shares his perspective on how to improve Europe's ageing power grid networks so that they can integrate the large amounts of renewable energies needed to meet the EU's 2020 targets.

Interview | Potočnik: More legislative power, but no money for environment
Interview | Hedegaard: 'Rethinking our growth model'
Interview | Director: Demand for French classes 'growing by 5% each year'
Interview | Danish minister: Green growth without prophesying
Interview | Welsh leader: 'Our interests in Europe are distinctive from England's'
OPINIONS

Unity or division in Europe's cloud computing market?
The advent of cloud computing technology gives the opportunity to further strengthen the EU single market, but to capture its potential countries' laws must be sufficiently harmonised to let data flow easily across borders, writes Robert Holleyman, president and chief executive of the Business Software Alliance.

Opinion | EU-India: Getting the bilateral compact right
Opinion | After the fiscal compact, European democracy
Opinion | UNEP and the green economy: 40 years in development
Opinion | Senegal deserves transparent elections
Opinion | GM crops: Follow the money
BLOGS

EU-Kommission:Die indirekte Rente mit 70
Auch das noch: Zuerst fordert die EU-Kommission indirekt eine Rente mit 70. Und nun legt sie womöglich außerdem die Axt an einen tragenden Pfeiler..

Blog | Hungary under fire
Blog | Lessons from a short but cold European Winter
Blog | Status of Europe’s ‘Ministry of Foreign Affairs’
Blog | Americans caring about the Planet`s Future should vote for Obama
Blog | Why patient safety and HTA are important – for us all
VIDEOS

^-A ⁺A

Published 01 November 2007 - Updated 08 September 2010

Tags

e-safety Internet governance Safer Internet

The booming popularity of social networking sites raises several security issues that must be tackled with educational campaigns and updated legislation, recommends the EU agency for network and information security ENISA.

In its first position paper on social networking, Enisa defines such websites as "one of the most remarkable technological phenomena of the 21st century" and "a great tool to allow like-minded individuals to interact with each other".

However, the agency outlines 15 threats related to the incorrect use of online social networks. The report, published on 25 October, distinguishes between privacy, information security, identity and social threats.

An example of a privacy-related threat is what the report terms 'digital dossier aggregation'. Third parties can easily download and store the profiles of online social network users. Among the negative consequences of this practice is the career-related risk, since potential employers can exclude candidates on the basis of data collected through networking sites. Cases of this kind have already been reported.

The report also underlines the risks for companies whose employees use social networking sites. Dangers include the publication of sensitive information by employees and the illegal use of the tools made available by some sites. The report says, for example, that one "social-networking site-search results page lists employees currently or previously working at Barclays Bank, which could be useful to someone collecting information for a social engineering attack on an enterprise".

The website concerned is LinkedIn.

Other threats result from spam, phishing, face recognition, worms and viruses, difficulties in deleting an account completely, profile-squatting, stalking and bullying.

Enisa recommends increasing awareness-raising campaigns to make the related risks clear to a naïve user of these sites. The agency suggests carrying out these campaigns on the networking sites themselves to educate people in "real-time".

The report discourages the banning of online social networks in schools, and promotes the use of the most recent tools to address some of the risks involved. For example, it suggested introducing 'Report Abuse' buttons as ubiquitously as 'Contact Us' options.

The report underlines that all these problems are not just a matter for service providers or users, but also for governments, who should adapt legislation to the requirements of social websites.

Such sites "present several scenarios which were not foreseen when current legislation (especially data protection law) was created. This means that certain issues may need to be clarified. In some cases, the existing legal framework may even need to be modified or extended", says the Enisa report.

External Links

EU official documents

Enisa Position Paper EU agency for network and information security suggests updating legislation to face new social networking-related risks (25 October 2007)
EU directive Directive on the protection of individuals with regard to the processing of personal data (24 October 1995)

Press articles

BBC Article on Murdoch's acquisition of MySpace (19 July 2007)

Blogs

Preventing Facebook Identity Theft

Other

LinkedIn Webpage with the list of Barclays' employees

Français

Background:

A social networking site is a website on which users can post personal information - similar to blogs, but with the added value of providing tools for developing interaction with other users and filters to determine who has access to the data available.

The main online social network sites are MySpace and Facebook . MySpace was bought by media tycoon Rupert Murdoch two years ago for US $580 million. At the time, the site had some 90 million users - a figure which has almost doubled since, according to the latest figures cited by Murdoch in a recent interview.

Moreover, figures reported in the ENISA paper indicate that in June 2007, MySpace was the most visited website in the US. MySpace's first global competitor is Facebook, valued at US $2 billion in 2006, a year after the sale of MySpace, a figure which by September 2007 had risen far higher, say ENISA.

ENISA - located in Heraklion, Crete - was established as an EU agency in September 2005, in recognition of the increased importance that the EU attaches to communication networks. Its current executive director is Andrea Perotti, an Italian.