Facebook, Twitter Security Changes and What They Mean for Your Business

Est. Reading Time: 2 minutes


A few months ago, in an attempt to make the platform more secure, Facebook began secure browsing by default. This simply means that your browser is always communicating with Facebook using a secure connection- HTTPS vs. HTTP. Previously users had the ability to opt-in to HTTPS browsing, but it was not the default. Facebook engineers are continuing to develop on the HTTPS switch, rolling out additional updates this fall.

One important change for Facebook Business Pages is to make sure your custom tabs are all up to date. These new security changes have stricter guidelines that your content needs to follow in order to be displayed properly.

If you’ve created any custom tabs, it’s likely your content is displaying inside an iFrame on Facebook. The URL of your tab is hosted elsewhere. Since it’s possible the URL of your tab comes from an insecure web address (http://), Facebook won’t render the content as part of its secure page (https://). You’ll need to update your application’s URL to be secure, which could mean acquiring an SSL Certificate if you don’t already have one.

Don’t forget! All the different elements within your app must be secured as well. This includes making sure that pages aren’t coded using mixed content when calling files. All files should be linked using HTTPS and not HTTP to avoid security issues and allow your content to be displayed properly.

Image courtesy of bubblews.com


Facebook isn’t the only social network making security changes. Twitter has announced it’s change in the direct message (DM) feature. Previously users were required to mutually follow each other in order to send a direct message. Now, you have the ability to opt-in to receiving direct messages from any follower, regardless of whether you follow back or not.

What does this mean for your business? Well, it means followers no longer have to broadcast their grievances publicly. They have the ability to directly message a brand privately to have their issue addressed. This will help brands better manage customer service related issues on Twitter. Like any other publicly accessible messaging mechanism, it also opens up the potential for SPAM.

To opt-in to this new Twitter feature, navigate to your Twitter settings > Account > Messages. Check the box that says “Receive direct messages from any follower.”

Are you opting-in to the new direct message feature? Have you noticed any other security or privacy changes on your social media accounts?