Monday, 5 January 2009

Twitter phishing scam

Looks like even Twitter.com has fallen victim to phishing attacks. I've just noticed (two days late in noticing, actually) a warning on the Twitter homepage that warns users about logging in from direct emails.

According to the Twitter blog, the scam email may read something like: "hey! check out this funny blog about you..." and provides a link that will redirect you to a site masquerading as the Twitter front page. People who click on the link may have inadvertently given their Twitter password to the phishing site.

But why should it be a concern? After all, it's only micro-blogging. According to Twitter.com again, it would then be possible for the phisher to send out direct messages on your behalf which could trick your followers. Your followers may be asked to do something rash, like revealing their personal credit information. Phishers are patient. They have all the time in the world and they only have to be patient before some unsuspecting fella falls for the scam. So, beware!

No comments: