It seems as though the latest rash of threats and attacks all have a familiar ring to them: they re all aimed at social networking sites like Twitter and Facebook, which is interesting, because smart attackers will use whatever means possible to get to the stuff that really counts enterprise data. Clickjacking, XSS (cross site scripting) and CSRF are up-and-coming methods for hijacking user input to launch malware or take control of users pointing at certain web sites. The real danger in here is not taking it seriously and safeguarding against it.
Source: https://threatpost.com/social-networking-attacks-target-enterprise-data-061509/72860/