Presentation I gave at the CoolTwitter Conference in Cleveland, Ohio August 7, 2009. I talked about the top 5 1/2 threats to Twitter and ways you can use it safely. Yes, there are more then 5 1/2 issues but I only had 15 minutes! :-)
7. Web Vulnerabilities
• XSS (Cross Site
Scripting)
• ClickJacking
• Third-Party
Applications
(Twitpic,
BrightKite)
8. Impersonation &
Disinformation
• Fake accounts
(Celebrity)
• Do you trust
what you
read?
• Fake Re-
Tweets
• SPAM
9. The employees at
Twitter...srsly.
• Two high profile
attacks already!
• Don’t use real
information for
password reset
questions!
• Same passwords for
all accounts = FAIL
12. NoScript
• Protects you from
malicious JavaScript
• Prevents XSS/ClickJacking
• Kills unwanted
ads..improved speed!
• http://noscript.net
13. Use a Third Party Client
• Safer then using the
Twitter web client
• Some have issues
with clear text
authentication...but...
14. Long URL Please Add-on
• Shows you true URL
• 73+ services supported
• LongURLPlease.com
15. Use a Password Manager
• KeePass
• 1Password (iPhone) keepass.info
• Or...think of a
password scheme
(C0mp1exP@assw0rd
_Tw1tter)
• If one account gets
compromised...others
are safe!
16. Careful what you
believe, trust but verify...
• Even Tweets from
your friends! What if
their account was
compromised?
(Koobface)
• News sources can be
sketchy...