Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Facebook Privacy Security Your Rights Online

41% of Facebook Users Willing To Divulge Personal Info 157

plastick writes "In an experiment, 41% of Facebook users were willing to divulge highly personal information to a complete stranger. This according to IT security firm Sophos, which invited 200 randomly selected Facebookers to befriend a bogus Facebook user named 'Freddi Staur' (an anagram of 'ID Fraudster'). Of those queried, 87 responded to the invitation, among them 82 people whose profiles included personal information such as their email address, date of birth, address or phone number."
This discussion has been archived. No new comments can be posted.

41% of Facebook Users Willing To Divulge Personal Info

Comments Filter:
  • Again? (Score:5, Insightful)

    by Frosty Piss ( 770223 ) * on Sunday March 13, 2011 @09:38PM (#35476070)
    Yet ANOTHER story about how many Facebook users are not particularly interested in hiding personal information. I mean. come on! This is some sort of News Flash? Is anyone unaware that Facebook is primarily a platform for sharing personal information?
    • by lwsimon ( 724555 )

      Agreed. I don't particularly like Facebook, but I use it with full knowledge that it is a public forum.

      This isn't a Facebook issue - it's an issue of users not valuing the things that nerds - as a rule - value.

    • Re:Again? (Score:5, Informative)

      by One Louder ( 595430 ) on Sunday March 13, 2011 @11:29PM (#35476614)
      Apparently, it *was* a News Flash back in 2007 when this article was written.
      • samzenpus might have forgotten the "new" in "news for nerds"

        good catch, sir.

      • I'm normally not one to comment on the editorial quality of the site, particularly since I understand that many of the articles published nowadays are meant to "get eyeballs" and keep the traffic coming. However, this is unacceptable. 2007?? How could an editor miss this?

        I don't care much about the dupes or "summarised" headlines, but this is pure laziness and journalistic carelessness. Sorry, Slashdot folks; you guys missed the mark here.
    • by syousef ( 465911 )

      Yet ANOTHER story about how many Facebook users are not particularly interested in hiding personal information. I mean. come on! This is some sort of News Flash? Is anyone unaware that Facebook is primarily a platform for sharing personal information?

      Huh? I thought it was a farming simulator!

    • by AvitarX ( 172628 )

      My name is 100% unique in this country (and likely the world), anybody who has my name has that info. I hardly feel concern.

      There was a time almost every phone number and address was public (white pages), a birthday is hardly secret knowledge too, and really who the fuck cares about an e-mail address.

      None of these things are meaningful.

      • Perhaps they are not meaningful to you. Personally, I pay to keep my telephone number *out* of the white pages, and divulge none of the other information to anyone other than my employer, my bank, some creditors, and a few real-life friends. I don't want *anyone* else to have it. I'm inclined to send nasty-grams to HR when they voluntarily give away my work email address to 'corporate perks' programs and 'employee health' organizations. I get almost zero personal spam but average five a day for my work

      • There was a time almost every phone number and address was public (white pages), a birthday is hardly secret knowledge too, and really who the fuck cares about an e-mail address.

        This is a case of society not catching up with technology, true names, phone numbers and addresses were always public, but could only be used at great cost and at best represented contact details for you rather than a map of your life. The cost to collect and use that information meant that an individual had some security through o

      • Change your name to John Smith. Problem solved.

    • The debate on privacy vs transparency os far from resolved. Everyone agrees there is a right to privacy for the public and a right to transparency and access in government, management, and crime investigation data, but nobody can figure out where one ends and the other begins. What's clear to me is that privacy is inevitably reducing, but transparency still needs to grow more to accompany. If there is a reduced expectation of privacy, because of new technical and political realities, there has to be an ac
    • Even if it wasn't....

      How many people are willing to put that same information into a "reply" card at their favorite shopping mall in exchange for a minuscule chance at winning a timeshare vacation package?

      Some information is just not seen by many as all that private, personal, or valuable. Deal with it.

  • Was it real (Score:4, Insightful)

    by slashqwerty ( 1099091 ) on Sunday March 13, 2011 @09:41PM (#35476092)

    "82 people whose profiles included personal information such as their email address, date of birth, address or phone number."

    How much of that personal information was real and how much was made up?

    • Re: (Score:2, Informative)

      by MrEricSir ( 398214 )

      Email: president@whitehouse.gov
      Date of birth: 01/01/01
      Address: 123 Fake St., Fakesville, ZZ
      Phone: 666-HELL

    • According to my Facebook information, I am 97 years old. Luckily, my employer did not check it out when making me an offer.
    • Personal information like an email address? Heaven forbid someone find out about that! You might get (more) spam!
      • Don't worry, if you have account with TD Ameritrade, they'll take care of that for you.

        Privacy would be a lot more meaningful if companies that lost personal information got more than a slap on the wrist. I made more or less all the right decisions, then my brokerage is bought out by those guys and all of a sudden I'm receiving personalized emails only requiring a credit card number to get generic v1@g4ra.

      • by arth1 ( 260657 )

        e-mail addresses aren't as useful for the bad guys for actually using, but they are incredibly useful as unique identifiers. Behind most e-mail accounts (except for sales@ and similar), there is usually exactly one person, whether it's used to send mail to or from. Googling (plus a couple of other tools) the e-mail address found at Facebook can often give a surprising amount of information, often quite different from the untruths on the Facebook page.

        I remember one guy who claimed 5+ years expertise with

      • Strange thing is that I created an address on my server just for slashdot, but it started getting spam shortly after I configured my account to use it. I might have made a mistake and sent it to somebody but I am pretty sure I didn't.

      • by Dan541 ( 1032000 )

        I agree, god forbid if anyone should ever discover my email address. It's not like I post in on /. or usenet or anything.

        The whole point of having an email address is for people to contact you.
        If you have a good filter spam is a small price to pay for the massive convenience. I do protect my phone # allot more because I don't always want to be disturbed unless it's important. Email is patient and waits until I get to it.

    • Speaking of which, regarding these kinds of surveys, doesn't that violate the Facebook terms of service?

      And doesn't Facebook ask you to "verify" your acount ("for your protection", of course), like Paypal, after a while?

      If so, how did they (the researchers) get a credit cart for Freddi Staur?

      Not only that, but with breaking ToS also being a felony according to certain crazy legal jurisdictions, I don't know if it's a great idea to be telegraphing this research far and wide (as opposed to just saying "users

      • Speaking of which, regarding these kinds of surveys, doesn't that violate the Facebook terms of service?

        And doesn't Facebook ask you to "verify" your acount ("for your protection", of course), like Paypal, after a while?

        If so, how did they (the researchers) get a credit cart for Freddi Staur?

        Uh, last I checked I haven't ever given Facebook my credit card number.

        Have you?

        • No, like much of Slashdot I don't use it.

          But, according to this [allfacebook.com], Facebook does ask for your credit card. I don't know how widespread this is.

          Of course, you can imagine how valuable having verified information on the product (you) will be to advertisers and investors like Goldman.

    • "82 people whose profiles included personal information such as their email address, date of birth, address or phone number."

      How much of that personal information was real and how much was made up?

      Oh, all the data in my profile is real, it's just not correct. Having a plausible profile looks better than having one that's obviously fake, though I do have the odd person asking why my address is the same as the local police station.

  • Misleading Title (Score:5, Informative)

    by Haedrian ( 1676506 ) on Sunday March 13, 2011 @09:43PM (#35476100)

    "Willing to Divulge to" makes it sound like some complete stranger went on facebook and asked "Hey, give me your email address, blood type and shoe size" and got an answer.

    What it really is, is that people add friends pretty randomly and openly, and many don't secure their personal information very well. In the ideal case you would have various 'grades' of friends which determine permissions but

    a) Nobody would bother using it
    b) Facebook doesn't particularly care about privacy.

    Anyhoo, we knew all of this earlier - so non-story.

    • "Willing to Divulge to" makes it sound like some complete stranger went on facebook and asked "Hey, give me your email address, blood type and shoe size" and got an answer.

      Isn't that how it pretty much is? Or are you friends with Zuckerberg?

    • by Sir_Sri ( 199544 )

      It also wrongly supposes that all of that information is necessarily private. My full name, address, phone number, e-mail address are already public whether I like it or not as part of working for the government and the information it makes available, as it does the government portion of my income.

      I'm not 100% sure on my date of birth, so I wouldn't include that necessarily, but I'm pretty sure it's public too.

      And I'm in ontario and make 22k a year as a grad student. People who make 100k a year have their

    • Facebook does have the capability to do grades. You can create groups, and set up permissions based on group membership. I do it with a couple of groups - mostly to segregate some information from friends I'm not that close to or who I know are computer illiterate and will get every possible virus.

    • makes it sound like some complete stranger went on facebook and asked "Hey, give me your email address, blood type and shoe size" and got an answer

      There was a convincing scam for a great deal on some kickass bionic feet, so...

    • Ah, the Radio Shack interview. Are they still in business?

      • Last name? Jackson
      • First name? Andrew
      • Address? 1600 Pennsylvania Avenue NW, Washington DC, 20500
      • Phone? 202-456-1111
      • Payment? cash
    • I created a Facdebook page with deliberately misleading and contradictory information, and put on my Facebook page very clearly that this was designed to be misleading, just so Facebook wouldn't rely so much on its info to datamine. I asked a bunch of randomly selected total strangers to friend me on Facebook --and some did.

  • 200 people can only represent so much.
    • Yes, but if those 200 people happen to be most of the Senate and the swing vote in the house, things can get real ugly, real quick.

  • by Anonymous Coward on Sunday March 13, 2011 @09:48PM (#35476122)

    personal information such as their email address, date of birth, address or phone number

    I also have that information on my Facebook profile. It is available for ANYONE to see, including nonfriends.

    I don't have a problem here - the problem lies with any bank who would consider that information to be "secret", and would allow someone to get a loan in my name with only that information.

    • by izomiac ( 815208 )
      Personally, I use Facebook as a phonebook and resume service, so I'd be fine with divulging that information (it's likely public record anyway). OTOH, "highly personal information" stays off of Facebook as I trust Mark Zuckerberg less than my least trusted "friend". It's somewhat interesting that 59% of Facebook users accept random friend requests, but I see no real privacy issue here.
    • by Ndkchk ( 893797 )
      The mistake would lie with the bank, but if they were to give a loan in your name to anyone with that information, you would indeed have a problem.
  • Reading TFA I also conclude that

    1. No indication how many of the 200 were active accounts or how they were chosen (there's a screenshot which to me suggests a clustering? 6 friends in london? What are the chances given the huge population of facebook users?)

    2. They used a cartoon picture as a display image. If there was an uncertainty of whether you know this person, then the generic image wouldn't help either. If it was someone's real face you might get less people agreeing to friendship, probably.

    • Maybe the 41% were all ID Fraudsters too, and they welcome anyone who befriends them?
  • Highly personal? (Score:4, Insightful)

    by Bogtha ( 906264 ) on Sunday March 13, 2011 @09:49PM (#35476132)

    Maybe they just don't consider things like that to be "highly personal". By default, most of that information is available by doing such mundane things as registering a domain name. I don't consider contact information to be "highly personal". Somebody younger than me who grew up with social networking is even less likely to.

    • by lwsimon ( 724555 )

      I've long ago given up the concept of keeping my anonymous online. I know how to *go* anonymous, and protect myself where appropriate, but I do not do so in my day-to-day browser.

      Being in Internet marketing, my name is my brand. It's just part of it.

      • Exactly! and those of us who are proud of who we are and what we do have absolutely nothing to fear.
        • Exactly! and those of us who are proud of who we are and what we do have absolutely nothing to fear.

          Except pride.

          • by lwsimon ( 724555 )

            Why would you fear pride?

            • Why would you fear pride?

              Like sentiment, it has a way of compromising judgment.

              Dignity has a different nature from pride and has none of its disadvantages. It's compatible with a humble outlook, primarily because it views others as essentially equal and deserving of the same respect as oneself.

              For all I know, that very well could be what you meant all along.

    • Yeah, I'd agree. I wonder what the percentage of people are who divulge "highly personal" info to everyone in the country (and on the web) by allowing their phone number, name and postal address to be listed in the White Pages? Shocking isn't it?

    • by Paco103 ( 758133 )

      Phone number and address? Public information in the phone book. Personally I don't have my address shared and my phone number is Google Voice that directs unknown numbers to voice mail, but that's just a preference really.

      Date of birth? We hold parties, show our ID containing it to every bar tender that has some alcohol to offer, and for many people even if they don't list it, friends will still post happy birthday.

      Email? Since when is that private? I trust facebook and my "friends" with it a lot more

  • the issue is not the privacy.... it that i think that lots of users think that facebook was made for them. blame that on the "you are so special" parents...
  • by Isaac Remuant ( 1891806 ) on Sunday March 13, 2011 @09:53PM (#35476162)

    just look: http://www.sophos.com/images/misc/freddi_frog.jpg [sophos.com]

    Anyway, some issues:

    A) Why such a small sample data? I mean, it shouldn't be hard to annoy 1000+ users instead of just 200.
    B) Why aren't they talking about apps that access your information? I know you can disable them but, if you are willing to accept froggy here, I don't think you will.

    The implications of the whole thing are hilarious:
    Apparently, being poked by a Frog doesn't make you want to start a friendship. That could be a better title for the article.
    http://www.sophos.com/pressoffice/news/articles/2007/08/facebook.html [sophos.com]

    C) Next Survey: There's a pretty good chance that I'll waste valuable time with inconsequential Slashdot articles. But hey, It's good fun before going to sleep.

    • In terms of A), I suspect it has to do with being below the theoretical threshhold facebook might have for identifying scam users who are there to scrape information for profit/social engineering/other bad thing. Had they targeted 1000 a little bell might have gone off at facebook HQ before they had an adequate chance to actually look at what they'd managed to access.
      • I have thought about this but came up with a possible solution.

        Do not create one profile for 1000+ users but create 5 different profiles for 200 users each. The variety might even provide an opportunity to rectify wrong conclusions.

        It's a valid point, nevertheless.

    • A) Contacting people individually (ie not with a script) and verifying their information takes time. Doing so 200 times should add up to a nontrivial number of hours. It's likely that part took a good fraction of the time the researchers allocated for this report.

      B) Contacting 1000 people is 5 times as much work as contacting 200, yet the accuracy goes down as 1/sqrt(n), so with 1000 people you only halve the statistical error of 200. To improve the numbers by an order of magnitude, you typically have to

  • The heading, and a main talking point of TFA, suggest that, when asked, 41% of Facebook users will simply hand over personal information. But really what's shown is that about 44% of Facebook users will happily accept a random friend invitation and of those users more than 80% of them ALREADY HAD personal information posted on their profile. What does that tell us really?

    It tells us that nearly all of the idiots on Facebook who are stupid enough to accept a friend invitation from a total stranger are ALS
  • by LongearedBat ( 1665481 ) on Sunday March 13, 2011 @10:03PM (#35476218)
    Isn't that the whole point of Facebook? ...to divulge personal information to all one's friends, and allowing strangers to also see it in case they happen to be long lost friends.
  • by tuxrocks1 ( 2015818 ) on Sunday March 13, 2011 @10:05PM (#35476222)
    How many slashdotters will click this link [tiny.cc]
  • Only 41%?

    That's better than I would have expected.

  • by Anonymous Coward

    the vast majority of people were not willing to divulge their private information.

  • A Better Headline (Score:4, Insightful)

    by Ltap ( 1572175 ) on Sunday March 13, 2011 @10:19PM (#35476310) Homepage
    "41% of Facebook Users Willing to Press a Button Without Understanding or Caring About the Consequences."

    Let's just hope none of them end up in missile silos.
  • I suspect that very soon "social networking" will be rechristened "social engineering network".

  • Here's to a society where we really don't care that our boss knows who we fucked this weekend and how drunk we were when we did it; here's to a society where the boss has something better to do than worry about how much he pisses me off, because I'm still performing and he's still bossing; here's to the New America.
  • by Krystalo ( 1580077 ) on Sunday March 13, 2011 @10:37PM (#35476370)
    This article was published in August 2007.
  • by Anonymous Coward
    ...and what percent of the remaining 59% who actually do care about hiding their phone number/street address bother to take it off sites like whitepages.com? I mean, my mom says that she will never put her street address on fb, yet has never attempted to remove it from whitepages.com
  • I only friend people that I have met in real life, and with whom I wish to continue to have a friendship with.

    I have de-friended many old high-school friends after deciding that I didn't want to bother 'restarting' a friendship after a decade. I have refused to 'friend' people I knew in college, even Fraternity brothers, because I simply didn't know them well enough to consider friends.

    Finally, my Facebook account *DOES* have my birthday public, but the only 'contact' information on there at all is a 'thro

    • by Quirkz ( 1206400 )
      I have actual friends who I've never had the ability to meet in real life, but who are friends nonetheless. Clients and business partners, too.
      • I keep business associates off Facebook. That's what LinkedIn is for. :-P

        And I suppose the friend part is valid as well. But my point still holds, they are people that you are ALREADY friends with, and wish to continue to be friends with. It's still a case of using Facebook to further existing friendships, not to create new ones from random people. Too much info generally available with no prior vetting. That's what Twitter is for. :-D

  • Well (Score:3, Insightful)

    by jav1231 ( 539129 ) on Sunday March 13, 2011 @10:39PM (#35476384)
    "willing to divulge highly personal information to a complete stranger."

    I do this twice a month. It's called seeing a therapist. :p
    • by PPH ( 736903 )

      I do this every weekend at the local bar. Its called lying to some hot babe to get her into the sack.

      Oh, did you mean accurate personal information?

  • It's not 41% of facebook Users. its 82 of 200 sampled users of the 600,000,000 users on facebook.
  • Draw a normal curve of facebook users with IQ on the x axis and number of people on the Y axis. Now without thinking too hard, estimate the amount of people to the left of the peak in the curve. Approximately 50%. Wow - coincidence? Also for extra credit, quote that "correlation is not causation" to me to properly assign you your place on the curve.
    • Considering Facebook users need to be able to read and have computer/Internet access, I'd say most of them are average or higher intelligence. Computer security isn't something even slightly above average people think about. Unfortunately it's our job.
  • by Anonymous Coward

    Wait a sec....

    How come facebook doesn't terminate this bogus account, Freddi Staur, yet they happily terminate an account of a journalist in China for penning articles under a pseudonym. AND, they do so under the premise of a company policy that accounts must be established under a real name!!!

    See article here, http://cpj.org/internet/2011/03/michael-antis-exile-from-facebook-over-real-name-p.php

    Very hypocritical on Facebook's part that they do not enforce their policies uniformly.

  • I could actually see it being higher than that! 41 percent seems real, real low in my experience.
  • Here in Sweden there is a site at birthday.se, where by typing a full name, you get information on home address (including the flat number) with link to a map, link to yellow pages with your home phone number, mobile number, etc, and of course the date of birth. Also they provide a service to show you who else is living on the same address, with their "highly personal" information. Very good to know who else is living on the same floor, to get a name of the spouse incl birthday and mobile phone number, etc.
  • If 41% of facebook users are divulging personal information to strangers without a care - the other 59% are doing it without knowing it...
  • by Anonymous Coward

    Stuff like date of birth and address might be "highly personal", but it's not exactly confidential. The information is available from public records.

  • the 41% are just more stupid/careless/unthinking/trusting than the remaining 59%.
  • by thisnamestoolong ( 1584383 ) on Monday March 14, 2011 @07:00AM (#35477846)
    ...the figure is more like 95% -- every Facebook user who uses their real personal data (aka, everyone that is not a pedo and/or a slashdotter) is sharing their personal data. I know this because they are putting their personal data on Facebook, which is a fscking public forum.

    I'm really getting tired of everyone complaining about Facebook not respecting users' privacy -- the whole point of the platform is to make information public. I have a Facebook page. I find it to be tremendously useful to me, but I don't ever put anything on there that I do not want publicly available.
  • The title should probably be '41% of Facebook users lonely'
  • Happy Birthday (Score:2, Interesting)

    by Anonymous Coward

    Pretty much all of my friends have their birthday public.

    I don't know about other countries, but in Canada that is very dangerous. It has been repeatedly shown with just your full name and birthday a fraudster can get just about any document they want issued.

    Step 1: Ask government to reissue birth certificate.

    Step 2: Use birth certificate to get SIN reissued.

    Step 3: Use birth certificate and SIN to get drivers license reissued. (now featuring their picture, not yours)

    Step 4: Take out multiple credit cards i

  • All things are not equal:

    email address, date of birth, address or phone number

    So if I divulged "mythrowawayaddress@hotmail.com" I'm sharing highly personal information? How do you determine if an email is actually "highly personal?" Even if it's an ISP hosted address it could be a throwaway, and leads nowhere but a server. To a lesser extent, same goes for a phone number. Some people actually chuck a pre-paid in the garbage on a regular basis, you know. It's easy to have a throwaway phone number.

    What qualifies as "highly personal" shouldn't be based on a stan

  • facebook business plan expects every user to share data, and no matter what they do to address privacy concerns, facebook's prime directive has nothing to do with protecting users' personal information. simply by joining facebook, you're agreeing to allow facebook and their advertisers to use your information. all facebook users are affected, not a tiny percentage.

  • It seems to me that most people using Facebook don't know that their phone and address info is shared w/ their "friends". I'm pretty paranoid about that stuff and didn't know until I stumbled on the address book feature which wasn't too obvious on a computer be easy to find on the iphone/pod app.

    Luckily for me I never put that kind of info in there anyway and had already gone through the security settings to turn off sharing of most things and made my profile private to non-friends.

You know you've landed gear-up when it takes full power to taxi.

Working...