The list is not complete but will help you make your Social Media applications more secure.
Don't forget to
- Use a different username and password for different Social Media services. Don't forget the LinkedIn incident.
- Have a plan for the case of account hijack. What are you going to do. Do you have your account connected to the mobile phone for password retrieval?
- Download (for free) and read this Hootsuite 'Five-step guide for better social media security' (http://bit.ly/1714X2A).
Site administrators will have to use their personal accounts to be productive. Period.
- Be aware who in the company has the privileges to publish on FB as your NREN.
- Asign your staff different administrative roles like "Content creators" or "Moderators" instead of "Managers".
- Administrators should use "secure browsing only" for their personal accounts
- Activate "Login Approvals". You will have to enter SMS code or Generated code, once you would like to login to Facebook from unknow device.
- Connect your phone number and your account so you can reset your password if your account gets compromised.
- Check out which applications have access to your Twitter account.
- If your account gets compromised, here is what you can do: https://support.twitter.com/articles/31796#.
- Be aware who in the company has the administrative privileges to publish on your LinkedIn page.
- Administrators should use "secure browsing only" for their personal accounts.
Google+ and other GoogleID related apps
...
- Connect your company account with at least one mobile number.
- Activate 2 step verification
- Connect your company account with mobile number.tba