And Google (GOOG) is serving up ads on it.

To be fair, though, it’s no easy task for the search giant to keep Blogger malware-free. So in some sense, the fact that the service hosts just two percent of all malware and not 20 percent is an achievement, as Sophos’s Graham Cluley notes. “If you think about it, Blogger/Blogspot’s position is probably not surprising–it’s a phenomenally popular platform for people to create their own Web pages (blogs), and gives Internet users the ability to comment on other people’s blogs,” Cluley said in a post to his blog. “Inevitably, there are ne’er-do-wells out there who will try and abuse a great service like that, and try and plant malware and malicious links. For its part, Google–the company who own Blogspot–takes security seriously, and works hard to shut down Web pages serving up malware.”

• 72% of respondents divulged one or more email address
• 84% listed their full date of birth
• 87% provided details about their education or workplace
• 78% listed their current address or location
• 23% listed their current phone number
• 26% provided their instant-messaging screen name

Yikes. You’d think institutional privacy concerns would be enough to make folks think twice about expanding their Facebook networks with reckless gusto, wouldn’t you? Guess not.

“It certainly doesn’t bode well when you’re talking about privacy concerns,” Ron O’Brien, a senior security analyst at Sophos, told InformationWeek. “The information they’re offering up could be just as valuable as credit card information for someone trying to build a profile of you. People need to be more selective about whom they provide information to. … Collecting ‘friends’ is encouraged by social-networking and business-networking sites,” he added. “It’s a status thing to see how many friends or contacts you can rack up. … This was intended to demonstrate to the average user that they need to exercise a lot of caution. The Web is a doorway and it shouldn’t be constantly open.”