How Facebook is taking over our lives

President Obama used it to get elected. Dell will recruit new hires with it. Microsoft's new operating system borrows from it. No question, Facebook has friends in high places. Can CEO Mark Zuckerberg make those connections pay off?

Facebook held no appeal for Peter Lichtenstein. The New Paltz, N.Y., resident had checked out so-called social networking sites before, and he wasn't impressed. ("MySpace," he recalls, "was ridiculous.")

A chiropractor and acupuncturist, Lichtenstein was already a member of a few professional web-based user groups. The last thing he needed was another message box to check.

Then a buddy posted a link to photos from a trip to Thailand and India on his Facebook page and flatly refused to distribute them any other way. The friend's assumption: Duh - everyone's on Facebook.

And so Lichtenstein, 57, recently became an official member of the Facebook army, 175 million strong and, Facebook says, growing at the astounding rate of about five million new users a week, making it a rare bright spot in a dismal economy. If Facebook were a country, it would have a population nearly as large as Brazil's. It even edges out the U.S. television audience for Super Bowl XLIII, which drew a record-setting 152 million eyeballs.

But these days the folks fervently updating their Facebook pages aren't just tech-savvy kids: The college and post-college crowd the site originally aimed to serve (18- to 24-year-olds) now makes up less than a quarter of users. The newest members - the ones behind Facebook's accelerating growth rate - are more, ahem, mature types like Lichtenstein, who never thought they'd have the time or inclination to overshare on the web. It's just that Facebook has finally started to make their busy lives a little more productive - and a lot more fun.

Try logging in to quickly check a message, and you may find yourself scrolling through new baby photos from that guy who used to sit next to you in Mr. Peterson's English class. How did such a goofball end up with such a cute baby? And how'd he find you here anyhow? Soon you're checking the friends you have in common. This addictive quality keeps Facebook's typical user on the site for an average of 169 minutes a month, according to ComScore. Compare that with Google News, where the average reader spends 13 minutes a month checking up on the world, or the New York Times website, which holds on to readers for a mere ten minutes a month.

The "stickiness" of the site is a key part of 24-year-old CEO Mark Zuckerberg's original plan to build an online version of the relationships we have in real life. Offline we bump into friends and end up talking for hours. We flip through old photos with our family. We join clubs. Facebook lets us do all that in digital form. Yet we also present different faces to the different people in our lives: An "anything goes" page we share with pals might not be appropriate for office mates - or for the moms and grandmas who increasingly are joining the site. Basic privacy controls today allow users to share varying degrees of information with friends, but when I recently met with Zuckerberg in Palo Alto, he waxed philosophical about eventually giving a user the ability to have a different Facebook personality for each Facebook friendship, a sort of online version of the line from Walt Whitman's "Song of Myself": "I contain multitudes."

His ultimate goal is less poetic - and perhaps more ambitious: to turn Facebook into the planet's standardized communication (and marketing) platform, as ubiquitous and intuitive as the telephone but far more interactive, multidimensional - and indispensable. Your Facebook ID quite simply will be your gateway to the digital world, Zuckerberg predicts. "We think that if you can build one worldwide platform where you can just type in anyone's name, find the person you're looking for, and communicate with them," he told a German audience in January, "that's a really valuable system to be building."

read more

Read more!

Sniffing keystrokes via laser and keyboard power

VANCOUVER, B.C.--Presenters at the CanSecWest security conference detailed on Thursday how they can sniff data by analyzing keystroke vibrations using a laser trained on a shiny laptop or through electrical signals coming from a PC connected to a PS/2 keyboard and plugged into a socket.

Using equipment costing about $80, researchers from Inverse Path were able to point a laser on the reflective surface of a laptop between 50 feet and 100 feet away and determine what letters were typed.

Chief Security Engineer Andrea Barisani and hardware hacker Daniele Bianco used a handmade laser microphone device and a photo diode to measure the vibrations, software for analyzing the spectrograms of frequencies from different keystrokes, as well as technology to apply the data to a dictionary to try to guess the words. They used a technique called dynamic time warping that's typically used for speech recognition applications, to measure the similarity of signals.

Line-of-sight on the laptop is needed, but it works through a glass window, they said. Using an infrared laser would prevent a victim from knowing they were being spied on.

The only real way to mitigate against this type of spying would be to change your typing position and mistype words, Barisani said.

In the second attack method, the researchers were able to spy on the keystrokes of a computer which was using a PS/2 keyboard through a ground line from a power plug in an outlet 50 feet away.

"Information leaks to the electric grid," said Barisani. "It can be detected on the power plug, including nearby ones sharing the same electric line" as the victim's computer.

The researchers used a digital oscilloscope and analog-digital converter, as well as filtering technology to isolate the victim's keystroke pulses from other noise on the power line.

Their initial test, which took about five days to prepare and perform, enabled them to record individual keystrokes but not continuous data such as words and sentences, though they expect to be able to do that within a few months, Barisani said.

In addition to being used to sniff a neighbor's keystrokes in a nearby room, the attack could be used to sniff data from ATM machines that use PS/2 or similar keypads, Barsani said. The attack does not work against laptops or USB keyboards, he said.

The attacks are similar to other recent research that involves sniffing keystrokes through a wireless antenna.

And of course there is the big daddy of these types of remote sniffing attacks, TEMPEST, which allows someone with a lot of expensive equipment to sniff the electromagnetic radiation emanating from a video display.

The new attacks are easier and can be accomplished at lower cost, the researchers said.

source

Read more!