On the web, no one knows you’re a man
SNOSoft and DanBri write about social engineering hacks involving Facebook. Someone who isn’t a hot chick working in your company joins your firms Facebook group, and of course, on the internet nobody knows you’re a dog. If you saw a photo like this one, would you check or just let her in your group?
Of course, if your company sets up an Open ID provider coupled to the corporate directory and some other nice person (maybe facebook themselves) designs a widget to force group members to authenticate against particular OpenID providers then the fake employee would stick out by not being in the group.
