Facebook tip: Enable encryption to avoid privacy glitch
- 25 March, 2011 06:42
Yet another reason to take extra precautions while browsing Facebook arose today as reports surfaced that traffic destined for Facebook from AT&T's servers took a misguided loop through China and South Korea this week.
Generally, data from AT&T customers go directly to Facebook's network provider, but due to a routing mistake, traffic first went through China Telecom followed by SK Broadband in South Korea before routing to Facebook, IDG News Service reported.
This means that if you were among the customers affected and you did not have encryption enabled, it's possible that network operators in China and South Korea could see your Facebook data.
Such data possibly includes session ID information, personal information, e-mail, photos, chat conversations and an idea of who a person knows via their Facebook profile, the IDG News Service report stated. Security experts do say that it is unlikely that those countries did anything with the data, however.
One way to prevent this from happening to your account: Enable HTTPS.
In January, Facebook rolled out the HTTPS feature to all browsing done on the site, but it's opt-in an not automatic setting. Previously, Facebook used HTTPS only when you entered in your password. You can see you're browsing securely by the green address bar that appears.
To enable this security feature, visit your Account Settings page, then choose "change" next to Account Security. Click the box next to "Browse Facebook on a secure connection (https) whenever possible. Do note that encrypted pages take longer to load in this mode, and that not all third-party apps support https just yet.
Kristin Burnham covers Consumer Technology, SaaS, Social Networking and Web 2.0 for CIO.com. Follow Kristin on Twitter @kmburnham. Follow everything from CIO.com on Twitter @CIOonline and on Facebook. Email Kristin at firstname.lastname@example.org.
Read more about security in CIO's Security Drilldown.