Twitter phishing/spam worm

I got a few DMs recently purporting to be warnings from people you follow about abusive posts from somebody else.

2012-09-06_22_28_35-twitter_interactions

The bit.ly link in the message goes to a phishing page most likely posting new messages again if you disclose your account.

2012-09-06_22_29_44-sign_in_to_twitter

Even though the scam is quite obvious, there are probably enough people still falling for this.

 

(The taget url is blacklisted by bit.ly now, however)

Update (2012-09-26):

The story has now been reported by cnet: http://news.cnet.com/8301-1009_3-57519494-83/twitter-users-may-be-victims-of-…

Update (2012-09-26):

There are a few variations of the actual message and the redirect urls sometimes use .tk domains, e.g.

Did you see this tweet about you? XYZ.TK

hilarious pic! XYZ.TK

Twitter might start to charge soon, sign this petition to keep the service free! bit.ly/xyz

HIGHEST QUALITY REPLlCA WATCHES & JEWELRY 15% Off bit.ly/xyz (this may have been a normal spam url)

 

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s