I then tested a couple of other popular services such as HelloTxt and Ping.fm by changing my passwords using Safari on my Mac. Both these sites also allowed me to update my status through my cached profile pages on iPhone/Safari without any user authentication. What’s the big deal here? Well, for one thing, should your mobile device fall into the wrong hands, whoever it is will have unbridled access to your social profile(s) and assume your online identity.

Many of these sites also allow you to update your status vis SMS or Email. Any person in possession of your device can easily attempt a malicious act by texting or emailing status updates, masquerading as YOU. And since no password is ever required to SMS or Email, your security is equally compromised as rendered by the cached pages on the web browser.

Native apps such as Twitterific on the iPhone fair slightly better as the startup process involves actual login authentication, so changing your password is actually effective in blocking unauthorized access. But what good is that when there are so many other loopholes one can exploit?

With these security concerns in mind, “remote-wipe” would be a welcome feature indeed.