Twitter rogue app hits thousands

Powered by SC Magazine
 

Scammers try to lure Twitter users into becoming part of their dirty game.

Thousands of Twitter users have fallen victim to viral scams spreading fast across the site, a security firm has warned.

Messages went out attempting to lure users into following links, with one scam focusing on a girl who purportedly committed suicide, Sophos said.

Del Harvey, director of trust and safety at Twitter, notified users about the problem via her own account.

“Seeing msgs about someone committing suicide after a parent posted something on their wall? Yeah, it's a spam app. Don't auth it,” Harvey posted.

About 9000 users had clicked on these links, taking them through to a rogue app, which then attempted to connect with their Twitter accounts, Sophos explained.

Once the scammers gained access to accounts, they could relay the messages across Twitter to snare yet more users. They could also generate money by getting users to click through to online surveys.

In another group of tweets, the perpetrators used a rogue application called Your Online Timer, pushing out messages which claimed users could calculate how long they had spent on Twitter.

Victims of that scam had a status update automatically placed on their accounts, again containing the same link.

Sophos warned scammers could use account access to post messages linking to malicious websites, phishing attempts or other spam campaigns.

“The last thing you want is for your Twitter followers to believe that you are being sloppy over your account's security, and potentially putting them at risk, too,” said Sophos senior technology consultant Graham Cluley.

These breakouts come shortly after Twitter announced a new, hidden security feature on the site, which scanned all links going through the service.

“By routing all links submitted to Twitter through this new service, we can detect, intercept and prevent the spread of bad links across all of Twitter,” Harvey wrote last week in a blog.

“Even if a bad link is already sent out in an email notification and somebody clicks on it, we'll be able keep that user safe.”

Recent data from Barracuda Labs showed the Twitter crime rate had shot up 20 percent, further indicating businesses needed to be careful about how they and their employees used the service.

This article originally appeared at itpro.co.uk

Copyright © ITPro, Dennis Publishing


Twitter rogue app hits thousands
 
 
 
Top Stories
Innovating in the sleepy super industry
There’s little incentive to be on the bleeding edge, so why is Andrew Todd fighting so hard?
 
How technology will unify Toll
The systems headache formed through 15 years of acquisitions.
 
Immigration breached Privacy Act with data leak
Pilgrim slams "copy and paste" of asylum seeker data.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  7%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  15%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 815

Vote