A new, free guide on Facebook security, though geared for users, details the practices chief information security officers and other organizational security practitioners should share with their staffs to assure, not only safe Internet hygiene when workers access Facebook from work, but for use with other social media sites, as well.
A Guide to Facebook Security is, in the words of one of its authors, "fun to read and easy to understand."
In 20 pages, the guide explains how users can protect their accounts, avoid scammers and configure advanced security settings. It shows how to use one-time passwords, secure browsing and track account activity as well as explains why account thieves and malware pushers seek account access.
There's a whole section on avoiding: avoiding clickjacking, avoiding malicious script scam, avoiding account thieves and avoiding Facebook gaming scams.
Here are 16 tips the authors present to stay safe on Facebook:
- Only friend people you know.
- Create a good password and use it only for Facebook.
- Don't share your password.
- Change your password on a regular basis.
- Share your personal information only with people and companies that need it.
- Log into Facebook only once each session. If it looks like Facebook is asking you to log in a second time, skip the links and directly type www.facebook.com into your browser address bar.
- Use a one-time password when using someone else's computer.
- Log out of Facebook after using someone else's computer.
- Use secure browsing whenever possible.
- Only download apps from sites you trust.
- Keep your anti-virus software updated.
- Keep your browser and other applications up to date.
- Don't paste script (computer code) in your browser address bar.
- Use browser add-ons like Web of Trust and Firefox's NoScript to keep your account from being hijacked.
- Beware of "goofy" posts from anyone, even friends. If it looks like something your friend wouldn't post, don't click on it.
- Scammers might hack your friends' accounts and send links from their accounts. Beware of enticing links coming from your friend