[ insider_reports_insider ]
Twitter Phishing Scam Underway
Doug Caverly
Staff Writer
2009-09-24
 Insider Reports RSS Feed
Twitter users whose online acquaintances claim to be rolling on the floor with laughter should probably just leave well enough alone. A Twitter phishing scam featuring the acronym ROFL is spreading via direct messages at a rapid pace.
 | | Twitter Phishing Scam Underway |  |
Itamar Kestenbaum appears to have been one of the first individuals to spot the problem. As he noted, the text of the direct messages reads, "rofl this you on here?"
Recipients of the messages are then provided with a link to http:// videos. twitter. secure-logins01. com (spaces added so that no one accidentally clicks or copies an active link).
The destination on the other end of the link is a phishing site made to resemble Twitter. It requests users' login info, and unsuspecting individuals who provide it will see their accounts used to send out still more of the ROFL direct messages.
If anything like this has happened to you, now would be a good time to go change some passwords.
The good news is there's no evidence that the phishers are taking any further action, so this could just be a prank. Maybe even a social engineering experiment conducted by some researcher who's discarded the normal rulebook. But the login info could also be tested against different Gmail or PayPal accounts, which would be pretty bad.
Twitter's aware of the problem, anyway, and has tried to alert people to its existence with a tweet issued from an official account. Hopefully Twitter's engineers will be able to effectively squash the phishing campaign before too much more time passes.
About the Author:
Doug is a staff writer for SecurityProNews, InternetFinancialNews, SearchNewz, and WebProNews.
More insider_reports_insider Articles
Insider Reports RSS Feed
|
|
iEntry 10th Anniversary
RSS
Archive
