Naked Security ⇥

Graham Cluley writing for Sophos explores the recent connect.me Twitter spam.

Why should I trust these guys and grant them permission to post to my Twitter or Facebook pages? I don’t even know what their product is supposed to be! And yet, thousands of folks appear to be signing-up without a second thought.

It’s impossible for people to use Twitter authentication alone to steal your bank account details or your email address. On the other hand, what does connect.me have to offer right now, except a splash screen with the promise to be “a better way for online communities to discover and connect to each other.” Vague doesn’t even begin to describe it. They also have (ironically enough) a privacy policy posted, which basically says “trust us.”