Okay, so Linkin, Myspace, and Facebook really aren't THAT bad...

...but they have the potential for badness, like a chainsaw or strong encryption.

See my interview about social networking on Dark Reading. It's not earth shattering 0days that make these sites a liability, but the casual trust that users invest in them. Oh, and the 0days -- which are sometimes there by design.

Myspace Hax0rs

So, over the weekend, this popped up on the usual mailing lists: Month of MySpace Bugs, Yes!, or MOMBY.

Loyal readers will know I've poked at MySpace a time or two, and faithfully reported my findings to what I've guessed is the right place (security@myspace.com and abuse@myspace.com), to be met with indifference from News Corp and quizzical looks from peers as to why I'm even bothering.

So, hopefully, this goofy project will succeed in its two stated goals: Kill off Month Of .* Bugs, and catch the attention of News Corp that yes, vulns in very popular websites are kind of a big deal.