Facebook Messages: The Security Fall-Out

Facebook Messages was the big story last week, but it turned out to be less – or perhaps more – than at first appeared.

Commentators confidently predicted a full-blown Webmail client, which would take on Google’s Gmail.  Instead we got an extension of Facebook’s existing messaging system, giving Facebook users an external email address where others can contact them, and letting Facebook messages reach other email addresses and – by SMS – phone numbers.

The end of email?

There are limitations. There’s no subject line, maybe because it’s all about the conversation – or maybe because there are no subject lines in chat systems such as Facebook, or in SMS messages

And there have been security worries.  These have been best set out in Sophos’ FAQ on the subject, but could probably be summed up by saying “We’ve always been sceptical of Facebook’s privacy stance, do we really want to sign up our whole online life to it?”

There are, of course, plenty of people who already do that. Many teens prefer to speak to their friends through Facebook, because that is where their friends “are”, and they slip easily into Facebook chat.

For some people, who came late to “real” email, Facebook is email.

Sophos warns that a public email from Facebook would be easy to deduce and therefore easy to target with spam, as well as all the spam that already circulates within Facebook itself. “The new features do increase the attack surface of the Facebook platform,” says Sophos.

The service is supposed to filter these, as well as anything not from existing friends into a folder marked  “Other”, so it looks from some directions a lot like an email “whitelisting” service, in which your Facebook friends assume the role of your whitelist.

Walled garden

The system could also pose a bigger risk, particularly for naive people who buy into it too enthusiastically – the difficulty of the exit strategy.

All too many people circulate the addresses provided by ISPs or other services (even including Gmail), creating a big barrier to moving away from that service in future.

In Facebook Messages, the risk is even greater, because Facebook does the sharing for you.

Facebook creates an enticing walled garden, which is in some ways reminiscent of the walled gardens that services like Compuserve and AOL tried to construct amid the first wave of email awareness in the 1990s.

Their efforts ultimately failed, because users preferred the big world provided by the “real” Internet.

This time round, with 500 million keen users, there is a risk that Facebook could succeed in creating an  attractive enough world to make that a reality. Tim Berners-Lee has warned against this in a Scientific American article, and we think that the threat could be real.

Peter Judge

Peter Judge has been involved with tech B2B publishing in the UK for many years, working at Ziff-Davis, ZDNet, IDG and Reed. His main interests are networking security, mobility and cloud

View Comments

  • I completely agree with this article. Facebook messages is going to have several privacy issues. It is not secure at all. Mark Zuckerberg himself said that facebook would be accessing messages and using them to generate advertisements. This shows just how insecure facebook is. I have gotten disgusted with facebook and quit it. I hope MyCube or Diaspora which seem much safer, live up to their promise upon launching

  • I already have a secure email address and don't see the point of switching to something as unsafe as Facebook. Facebook does not seem appealing to me at all. Really happy with Gmail and will continue to use that for emailing. In fact, I am waiting for a safer social networking platform such as MyCube or Diaspora to launch so that I can be assured that my content and information is private and secure.

Recent Posts

Hate Speech Watchdog CCDH To Quit Musk’s X

Target for Elon Musk's lawsuit, hate speech watchdog CCDH, announces its decision to quit X…

3 hours ago

Meta Fined €798m Over Alleged Facebook Marketplace Violations

Antitrust penalty. European Commission fines Meta a hefty €798m ($843m) for tying Facebook Marketplace to…

4 hours ago

Elon Musk Rebuked By Italian President Over Migration Tweets

Elon Musk continues to provoke the ire of various leaders around the world with his…

6 hours ago

VW, Rivian Launch Joint Venture, As Investment Rises To $5.8 Billion

Volkswagen and Rivian officially launch their joint venture, as German car giant ups investment to…

7 hours ago

AMD Axes 4 Percent Of Staff, Amid AI Chip Focus

Merry Christmas staff. AMD hands marching orders to 1,000 employees in the led up to…

10 hours ago

Tesla Recalls 2,431 Cybertrucks Over Propulsion Issue

Recall number six in 2024 for Tesla Cybertruck, and this time the fault cannot be…

11 hours ago