There have been a number of scams that use Facebook as a launching point, hoping to trick users into revealing personal information or other wise compromising their account.
Technology blogger Graham Cluley, Senior Technology Consultant for Sophos security software, writes about these scams on what seems a weekly basis. Now he's asking the social networking site to do something about it.
In an open letter to Facebook, Cluley says the networking site has an obligation to its members.
"Every day, victims report to us numerous incidents of crime and fraud on Facebook," Cluley writes. "They have been personally affected and are desperate for advice on how to deal with the consequences. A frequent refrain from users who contact us is, 'Why doesn't Facebook do more to protect us?'"
Cluley offers up three steps for improving Facebook security. First, no more sharing users' information without their permission.
Second, he says Facebook should do a better job of vetting its app developers.
"It is far too easy to become a developer on Facebook," Cluley said. With over one million app developers already registered on the Facebook platform, it is hardly surprising that your service is riddled with rogue applications and viral scams. Only vetted and approved third-party developers should be allowed to publish apps on your platform."
Finally, he says, Facebook should provide a secure connection (HTTPS) at all time, He notes the site recently introduced an HTTPS option, but the default setting is off.
"Why wait until regulators force your hand on privacy?" Cluley asks. "Act now for the greater good of all."
Recent Facebook scams have included bogus emails telling users their passwords have been changed, videos that download malware and assorted phishing scams.