Beware! Friends, family, secretly snooping on your Facebook account

CBC

Updated January 20, 2017 at 6:00 a.m.

Digital spies are often thought of as government spooks, or shadowy online groups pilfering data from afar in headline-grabbing attacks. But for many of us, the greatest threat can come from those we know and love.

A new study on so-called "social insider attacks" — where the attacker personally knows the victim — estimates that 24 per cent of survey participants had accessed the Facebook account of someone close to them without that person's knowledge.

Twenty-one per cent of those surveyed were estimated to be "knowing victims" of such an attack themselves.

"There are all these techniques that the security community has developed to deal with the external threat," said Ivan Beschastnikh, an assistant professor of computer science at the University of British Columbia, referring to efforts that companies such as Facebook put into preventing strangers from accessing your account from afar — via phishing, for example.

"But when it comes to internal threats, where the person might have physical access to the device, basically most research says 'it's out of scope.'"

Such threats have become an increasing concern to lawmakers and privacy advocates in recent years, with software used to stalk the smartphones of victims of domestic abuse drawing particular ire.

Snooping surveys

Beschastnikh, with UBC colleagues Wali Ahmed Usmani and Konstantin Beznosov, and researchers from the University of Lisbon, co-authored the study and will present their paper at the Human Factors in Computing Systems conference in Denver this May.

Funding was provided by the Office of the Privacy Commissioner of Canada.

The researchers conducted two surveys — one to determine the prevalence of attackers and victims, and another to better understand the rationale behind and consequences of such attacks.

The first survey — in which an estimated 24 per cent of survey participants accessed someone's Facebook account without them knowing — involved 1,308 people based in the U.S., and was conducted using an online service called Mechanical Turk.

In the second part of the study, the researchers analyzed 45 anonymous personal stories detailing incidents where the participant had either gained access to someone's Facebook account or been the victim of such an attack.

The researchers intended to understand how often insider attacks take place, the attacker's motive, the profiles of attackers and victims, and most importantly, the effect of such an intrusion.

'Victims were often livid'

Among the anonymous submissions, some admitted to looking at their victim's phone while he or she was in the shower. Another considered installing keylogging software on a partner's computer in order to get the password to Facebook and email accounts.

In one instance, a respondent went so far as to take a victim's sleeping hand and press a finger to the fingerprint sensor in order to unlock the phone.

The result: "Victims were often livid," the report recounts. "Many attacks led to permanent changes in the relationship between the victim and the perpetrator including ending of marriage, commitment, and friendship."

One victim told a boss about an incident, and the attacker was fired.

From curiosity to jealousy

The motivations of outside attackers — who often hack for profit — is not the same as insider attackers, the researchers point out.

"Our findings suggest that attacks are common, opportunistic, and have a range of motives, including fun, curiosity, jealousy, animosity and utility," the researchers write — with jealousy motivating 17 of the 45 stories received.

And unlike more traditional phishing attacks — which attempt to target a large swath of users at once — "the proximity between the victim and a social insider makes it easier for the insider to obtain unauthorized access to the victim's device and Facebook account," they continue.

Worse, because of the range of motives and methods, the researchers say it's hard to suggest a single strategy to mitigate such attacks.

"The large-scale intrusions that we see, they tend to target many many people," Beschastnikh said — and thus, tend to be similar in execution.

"To target a specific person, it takes quite a bit of effort, a lot of social engineering. And clearly the person who's the best person to do that is a person that you would know."

Yahoo Canada Style
Sophie Grégoire Trudeau is leaning into the unknown for her next chapter: 'I'm OK with the uncertainty'
No question was off limits in Yahoo Canada's candid and emotional conversation with the "Closer Together" author.
15 hours ago
People
Ex-Aide Says Melania Trump Will Be Watching 'Every Ounce' of Hush Money Trial — and Looking for 1 Thing
Stephanie Grisham, who served as chief of staff and press secretary to Melania, offered a window into her former boss's thinking as Donald's alleged affairs take center stage in the Manhattan trial
9 hours ago
HuffPost
How Toxic Is Trump? Republican Group's Hidden Camera Reveals Uncomfortable Truth.
The former president's behavior just doesn't fly out in the real world.
17 hours ago
The Daily Beast
Trump Picks Another Fight With Judge as He Waits for Contempt Ruling
PoolDonald Trump just can’t help himself.Moments after a contentious hearing about whether Trump should be held in contempt for violating his narrowly worded gag order, the former president took to his favorite social media platform to trash the judge who holds his fate. “HIGHLY CONFLICTED, TO PUT IT MILDLY, JUDGE JUAN MERCHAN, HAS TAKEN AWAY MY CONSTITUTIONAL RIGHT TO FREE SPEECH. EVERYBODY IS ALLOWED TO TALK AND LIE ABOUT ME, BUT I AM NOT ALLOWED TO DEFEND MYSELF,” Trump wrote on Truth Social
9 hours ago
People
'My Drink Tasted Funny': Pregnant Woman's Last Words Revealed After Alleged Fatal Poisoning by Boyfriend
Jade Benning died on her 25th birthday on March 6 after she was rushed to the hospital the week before
7 hours ago
People
Kourtney Kardashian's Sexy Bikini Photo from Her 45th Birthday Leaves Husband Travis Barker Melting
Kardashian enjoyed a vacation in paradise with her husband and four kids in honor of "45 trips around the sun"
8 hours ago
The Daily Beast
How Putin’s Whirlwind Bromance Could End in a Kremlin Tragedy
Sputnik/Alexei Nikolsky/Kremlin via ReutersThe Kremlin is reportedly scrambling to find a successor to Ramzan Kadyrov following reports that the Chechen leader has been diagnosed with necrotizing pancreatitis, a terminal illness, according to Russian media reports.Kadyrov, also known as “Putin's attack dog” or “Putin’s soldier” for his loyalty to Russian President Vladimir Putin, has visited Moscow Central Clinical Hospital regularly through the years to undergo procedures. He was allegedly diag
4 hours ago
People
Sydney Sweeney Jokes That She’s Sorry for Having ‘Great’ Boobs During Mexico Vacation
The 'Euphoria' actress poked fun at her appearance in an Instagram post while enjoying a getaway with friends
2 days ago
Miami Herald
Ryan Reynolds shares emotional tribute to Michael J. Fox
Ryan Reynolds wrote a tribute to Michael J. Fox that will bring a tear to your eye.
a day ago
INSIDER
Hush-money judge repeatedly bench-slaps Donald Trump's lawyer over gag violations: 'You're losing all credibility!'
A judge verbally excoriated a defense lawyer for Donald Trump during the Manhattan hush-money trial on Tuesday.
9 hours ago
People
Prince Louis Stars in 6th Birthday Portrait Taken by Kate Middleton as She and William Share Personal Message
The image comes one month after Princess Kate's Mother's Day photo with her children was criticized for being edited
14 hours ago
People
Kim Kardashian Reveals the Viral SKIMS Nipple Bra Was Modeled After Her Own Breasts
The bra was first released in October 2023
6 hours ago
Hello!
Royal fans left disappointed as Prince William and Princess Kate break with tradition on eve of Prince Louis' birthday
Here's how Prince William and Princess Kate strayed from established tradition on the eve of Prince Louis' 6th birthday
15 hours ago
Hello!
Sydney Sweeney's mini shorts and cropped jacket gives the double denim trend a spring twist
The Euphoria star looked the ultimate bombshell in her double denim look, paired with a black bikini and a bright orange bag. See photos
15 hours ago
CNN
Remains from a mother-daughter cold case were found nearly 24 years later, after a deathbed confession from the suspect
A West Virginia father is getting some sense of closure after authorities found the remains of his young daughter and her mother following a deathbed confession from the man believed to have fatally shot them nearly two decades ago.
4 hours ago
HuffPost
CNN’s Kaitlan Collins Names Donald Trump Trial Detail That’s ‘Been Driving Him Crazy’
New York Times journalist Maggie Haberman also debunked a Trump gripe about his hush money trial.
16 hours ago
Hello!
The one cheeky family member who makes Princess Kate 'lose her cool'
The Princess of Wales is known for her calm and cool exterior, but there's one cheeky family member who knows how to push her buttons – read exclusive
2 days ago
USA TODAY Opinion
Why aren't the MAGA faithful protesting Trump's trial/pity party?
For some reason, the area outside and around Trump’s ongoing criminal trial/pity party in Manhattan has been largely MAGA-free. SAD!
5 hours ago
The Canadian Press
'Kings fatigue,' high prices dampen enthusiasm for Oilers playoff tickets
EDMONTON — The in-house decibel meter shot past 100 throughout the game. More than 1,150 hats — 14 bags full — were collected after Zach Hyman scored his third goal of the game. Just another raucous playoff night at Edmonton's Rogers Place, right? Not quite. The Oilers announced a sellout crowd for their 7-4 win over Los Angeles on Monday that opened a first-round playoff series with the Kings. Unoccupied seats, however, were noticeable throughout the arena. There was an entire row that was empt
8 hours ago
USA TODAY
Kellie Pickler performs live for the first time since husband's death: 'He is here with us'
Kellie Pickler has performed live for the first time since the death of her husband, Kyle Jacobs, in 2023.
10 hours ago

Latest Stories