Comments on: Exploring Social Media Tools Series

By: Social Media: Is it effective in “swaying” ye-olde voters’ votes? « Tiyung Dayak - “The Sour Dayak Apple” in Bidayuh Politics

Wed, 11 Mar 2009 05:41:26 +0000

[...] * “Social media” is a term coined by Lorelle. [...]

By: Damien

Damien — Mon, 09 Mar 2009 04:03:40 +0000

I like the simple definition you came up with. It IS about connecting people. The trick is being someone people would like to connect with A lot is changing because of social media.

By: Exploring Social Media Tools Series « Lorelle on WordPress | thesocialmediasecrets

Sun, 08 Mar 2009 14:20:34 +0000

[...] Go here to see the original: Exploring Social Media Tools Series « Lorelle on WordPress [...]

By: Lorelle VanFossen

Lorelle VanFossen — Sat, 07 Mar 2009 20:23:14 +0000

Online security is always a concern. Luckily, recent attacks have been limited to only a very few compared to the total number of users. I agree that improvements in security are critical, for everything not just Twitter. The more dependent we become on all these various integrating social media tools, the more cautions we need to be about protecting our privacy and security.

By: Webstractions

Webstractions — Sat, 07 Mar 2009 15:15:36 +0000

In regards to 3rd-party web applications using the Twitter API, a lot of the talk is about what they can do for the user (time saving, novelty, tool, whatever). Nothing is ever mentioned about what they can DO to you.

Considering the latest rash of hackings at Twitter, it is very evident that something needs to be done to securely use their API without exposing your login credentials. Of the 700+ people who’s accounts where hacked the other day, I am sure a majority of them did not know what was happening until they received the password reset notice via an email.

Problem is anyone can use the API via basic Http authorization. All you need is an account login, no API key needed. And people just hand their login credintials over to them.

I think it should be the responsibility of bloggers & twitterers to not actively promote any of these 3rd-party services. At least, without proper vetting of who are behind them.

Twitter at a minimum, and in the short-term, should require an application for an API key to at least identify the entity using the API. Sure, oAuth is in the works (private Beta) but is still a long way off — I can see the problem getting worse, before getting any better.