Top Security News Security Company Asks Obama To Think Twice About... Proprietary computer security company Fortify hopes the Obama Administration will think carefully about adopting open source software, especially in regard to security... Google, MSN, Yahoo Sites Hijacked By Crooks The cleverness and sophistication spammers and malware creators have reached is at times breathtaking. It's one thing to spread via shady, malicious... Twitterers Spooked By Clickjacking Seems like popular websites go through stages: early buzz and adoption, mainstream media recognition, funding and monetization brainstorming, meteoric... Valentine's Spam Hearts Your Inbox Valentine's Day spammers have a serious crush on your inbox this year. Since the beginning of February, the proportion of Valentine's related spam has increased... Thursday:02.19.09 Tools for shortening URLs have become very popular in the age of microblogging, but shortening a URL to incomprehensible code makes it impossible to know what you're clicking on. The now quintessential microblogging service is Twitter, which limits messages sent to a group of followers to 140 characters. This makes it difficult to post URLs with long set of parameters that follow. The necessity to shorten those URLs gave rise to services like tinyurl, is.gd, ping.fm, bit.ly, tweetburner and others. The consequence then became users were clueless about what they were clicking. That wouldn't be a huge deal so long as the link comes from a trusted source-someone a person knows whom they follow, or a friend on a social network. But recently social network accounts-not so much the networks themselves, except in one very embarrassing breach-have themselves become targets because of users' lack of good security practices. Join the Mosso Hosting Cloud. Easy. Powerful. Scalable. Learn More As is known throughout the hacker community, a simple dictionary attack has a great track record of cracking a large percentage of user passwords. Because it's so easy, crooks have been hijacking social network accounts and spamming those persons' friends, sometimes with malicious intent. That makes a shortened URL a hacker's best friend. The recipient trusts the sender and thinks they are being directed to (for example) a CNN news page, but instead find they have been "Rickrolled," as it is called now, to a dangerous malware-infested website. Luckily, there are smart people out there to help. One free tool recently developed is LongURL. At the website, a user can double check a shortened URL by pasting it into the tool bar. LongURL will return what address the link resolves to so the user can judge whether or not to click on it. There's also a Firefox extension that works by mouseover while actually on Twitter and the like, which makes it pretty convenient. The next thing to do is consider one's social networking password and make sure the account is not easily hijacked. About the Author: Jason is a graduate of the University of Kentucky. He covers business, technology, and security issues. SecurityProNews is brought to you by: SecurityConfig.com NetworkingFiles.com ITmanagementNews.com NetworkNewz.com DatabaseProNews.com SQLProNews.com ITcertificationNews.com SysAdminNews.com LinuxProNews.com WirelessProNews.com About SecurityProNews SecurityProNews is updated in real time with vital internet security alerts, news and in-depth articles for IT Managers. SecurityProNews understands that IT Management Begins With Security. Advertising Newsletters Corporate Info Site Map Support © 2009 SecurityProNews. An email newsletter. , Inc. 2549 Richmond Rd. Lexington KY, 40509 All Rights Reserved. Terms under which this service is provided to you. Read our privacy policy. Contact us. SecurityProNews is part of the iEntry Inc. Network of sites and newsletters.