A fresh phishing attack has appeared on social networking site Twitter that again used direct messages.
F-Secure CTO Mikko Hypponen said that the messages are similar to those seen last month. In the latest detected, the recipient receives a message asking "did I tell you that ur here" or "you should change ur photo u took here" with a link provided. Following this link takes the user to a fake Twitter page.
Hypponen said: “If you mistakenly give out your credentials, the attackers will start sending similar direct messages to your contacts, posing as you. The ultimate goal of the attackers is to gain access to a large amount of valid Twitter accounts, then use these accounts to post tweets with URLs pointing to malicious websites which will take over users' computers when clicked."
He claimed that Twitter is already filtering these messages from being posted, although it was unclear if they are also removing already-delivered direct messages.
Also, the Twitter built-in link shorteners (twt.tl and bit.ly) are detecting the URLs as malicious.
See original article on scmagazineus.com
New phishing attack hits Twitter
By
Dan Raywood
on Mar 23, 2010 12:21PM
Direct messages used again.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Promoted Content
"Move away from linear thinking", futurologist advises business leaders
Promoted Content
Australian data sovereignty and protection concerns increase
Promoted Content
A 360° view of the cost of data breaches in Australia and how to mitigate them
Partner Content
Solving the post-COVID digital access control headache
Sponsored Whitepapers
10 questions to ask before you select a Network Performance Management tool
Innovate faster. Why accelerating change is a CIO's biggest challenge.
Unlock faster time-to-revenue using Adobe digital document processes
How Security as Code changes development and deployment for the cloud
Tackle new ITSM priorities with this seven-step Micro Focus guide
.jpg&h=271&w=480&c=1&s=1)
