Social Network Groups for All-“A Stupendous Idea or Security Incident Waiting to Happen?”

The idea of having this social networking platform may seem like a good idea and it can be; however, the security risks it has with the current settings could really hurt the company’s reputation in the future. It makes it easy for people to link together in groups setting but in reality it is sharing too much unnecessary information with third parties applications. The current settings could lead to malicious users to exploit the vulnerabilities. The reasons to exploit the vulnerabilities in this platform setting are summarized to obtaining personal information which can be later used to exploit the vulnerabilities from the targeted individuals. In this case with all the contacts’ email addresses being out there for everybody to see, than a hacker could use it to obtain information from their employers or personal information such as financial information. Also, by using HTML and JavaScript a hacker could do command injections which could lead to limited accessibility. The JavaScript programming language could allow standard API’s to bypass access control or security checks and also a tainted input allows code to apply its own permission during the security management check. This idea could lead to serious security issues which could impact the revenue of the company. This is idea has a lot of merit because it would allow individuals to socialize in group settings. However, there need to be better security policies in place during the design so that there will not be too many bugs to work out after implementation. Taking the time to analyze all the necessary security risks and vulnerabilities early in the development phase will save “Social Networking Groups for All” money and will be able to offer a better platform to their