Slides Video We've spent a lot of time ranting about and / or embarrassing various Social Networks last year already. Still, we wanted to share with the Shmoo audience some further silliness, social experiments, and good old-fashioned Fail 2.0 that's popped up since we last looked at this topic. We'll also cover some of the new countermeasures and counter-countermeasures that have showed up on various SocNets in the past few months. In light of some recent mass pwnage occurring over Social Networks this past year, we explicitly promise NOT to say "we told you so", and definitely won't be performing our patented synchronized stage-left Electric Slide followed by some pop-locking and Nathan's famous Gloating Robot. A few things we'll be covering this time around: SocNets as Attack Platform, SocNets-As-Botnets, new developments in SocNet Applications, Alex Sotirov's cell phone number on Twitter, some new impersonation excercises, bypassing CSRF protections, and thoughts (and potentially some tools) for practicing "safe" Social Networking. Nathan Hamiel and Shawn Moyer are WebAppSec security monkeys who spend far too much time on social networks, and far too much time worrying about whether that's a bad idea, a really bad idea, or a really, really bad idea.