http://www.realsoftwaredevelopment.com/google-shares-your-private-documents/

1. The information could be inaccurate or false
2. There has been little thought about security and privacy
3. The possibility that viruses could propagate through a mashup
4. The possibility that a mashup could be used to cause havoc by misrepresenting information.

The scope for causing havoc is obvious. If you look at http://www.chicagocrime.org/ which shows crime statistics and locations on a Google map it would be a reasonable assumption that high crime areas have lower property values but what if the crime statistics feed was modified to show certain areas have higher crime levels in an attempt to artificially lower property values.

Marks does recommend that installation and authentication of servers with SSL certificates will alleviate some of these problems.

Refs:

Marks, Paul.; 12/May/2006; Mashup websites are a hackers dream come true.; New Scientist; http://www.newscientisttech.com/article/mg19025516.400

One of the obvious issues with ebusiness is that its still an emerging technology and as the technology itself moves ahead so do vulnerabilities. Possibly one of the biggest unrealised issues with bricks and mortar organisations as they depend more and more on ebusiness technologies is their vulnerability to issues like these.

Refs:

Olzak, Tom.; Lock it down: Use the revised OWASP Top Ten to secure your web applications — Part 1.; http://builder.com.com/5100-6371_14-6166717.html?tag=nl.e601

Open Web Application Security Project (OWASP) website; http://www.owasp.org/

“The Defense Intelligence Agency is seeing mushrooming use of various Web 2.0 technologies, which are becoming increasingly critical to accomplishing missions that require analysts to share intelligence, said Lewis Shepherd, chief of the DIAs requirements and research group at the Pentagon. ” – Havenstein

The use of mashups is interesting and is the equivalent of commercially sensitive material using mashup technology for a normal business.

Refs:

Havenstein, Heather.; Military Intelligence Goes Web 2.0.; Computerworld.; http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=284174

“You can buy a U.S. identity — a credit card, bank account, Social Security, date of birth — for US$20,” by Huger

I liked this article about botnets and how they can be used for identity theft. The quote makes me wonder how the business clearly identifies that the person it is dealing with is indeed the person it thinks it is dealing with.

Refs:

Messmer, Ellen; 19/Mar/2007.; Bot Herders Selling Stolen Financial Data to Criminals.; Chief Security Officer Online; http://www2.csoonline.com/blog_view.html?CID=32583