Bebo

In the last two days I have gotten 5 or 6 emails from different friends asking me to update their address book through them with www.bebo.com. Have any of you guys heard about this? It's just seems a bit suspicious since I got a bunch at once. Any comments???

 

I got it too. Deleted. I don't care if my friends ever find me.

 

I delete anything like that.

Some of the people I know did it... I asked them and they said they did no such thing. Hmm..

Don't like the idea of other people having my email address for no good reason.

 

Anything that comes at me, that fast, that hard makes me suspicious.

Did you google it?

 

http://www.legalmarketingblog.com/client-communications-47-spam-scam-warning.html

I put my money on scam. When will it ever end?

 

This is from bebo.com's privacy policy:
-------------------------------------------------------------
How secure is your web server?

Our web servers are locked in cages in an internet data center constructed with double aluminum walls and high-impact resistant glass. This center offers the widest range of physical security features including state-of-the-art smoke detection and fire suppression systems, motion sensors, locked-down floor tiles, as well as video camera surveillance and security breach alarms.

Bebo uses industry standard technology to keep your personal information as safe as possible. Additionally, we have dedicated non-stop power systems, with multiple back-up generators, in case of power failure. As a further safety feature, all the data is backed-up on a daily basis. Our servers are housed on a dedicated ethernet segment with a dedicated router port for added network security.
-------------------------------------------------------------

I don't know why I find the first half so funny

Isn't the second part whats important to users?
I, mean, does internet espionage really have to deal with actual burglars breaking in and stealing the hardware?

 

I have received quite a few of them and just kept deleting them..finally went to the site last week (didn't use the link in the email) and read their FAQ, TOS, etc. I was not impressed and even if I was, I don't want my information sitting in a database like that where they are free to change their TOS without notice, nor do I want to deal with the ads in the emails, etc. If I wanted bloated emails, ads, spy ware and whatnot I'd use incredimail or smiley central.

 

Just got one from a "friend" today...she's just the kind of computer-useless woman who would fall for anything they like.

It's good to know that if you cancel your account you'll be removed from their address books, though.

 

99% of that little excerpt is stuff that only the administrators of the system would be even remotley worried out.

Generally speaking, these days users kinda take it for granted that someone won't walk away with a bunch of web servers. Physical security isn't really first paragraph material, I'm afraid. Not in a user aimed document anyway.

Second paragraph isn't stunning either. Most of it is about network/power structure. Which, again nobody really cares about. I don't care if its got its own dedicated router port and a backup power supply, all I care is if the thing works.

The only part of that paragraph that is required is the first sentance.

Anyway. Physical security IS an issue, if you had a mass of computers sitting in a big room, you wouldn't someone plugging in their laptop and hijacking them all to send spam at someone. Nor would you want someone walking off with your servers.

Social Engineering is a problem for datacenters. The center I'm looking to get my server hosted at has a system whereby two keys are required to open your server rackspace, one that you keep and one that a your technical representative keeps. This way you would have to STEAL the key, and find out the name of your tech rep and when their shift is.

There have been case(s) in the past where people have gone into a datacenter , swapped out a server (an "upgrade") and taken an entire set of websites offline.

I think someone tried to do it to MSN once, but maybe not, some big company thats for sure.

 

Thanks for the info goldy