Twitter warns of new phishing attack.Byline: jeevan@cpidubai.com (Staff) Twitter A Web site and service that lets users send short text messages from their cellphones to a group of friends. Launched in 2006, Twitter (www.twitter.com) was designed for people to broadcast their current activities and thoughts. warned users of a new phishing scam on the social networking site A Web site that provides a virtual community for people interested in a particular subject or just to "hang out" together. Members create their own online "profile" with biographical data, pictures, likes, dislikes and any other information they choose to post. .<p>It's the latest in a series of scams that have plagued the site over the past year, designed to trick victims into giving up their user names and passwords. <p>"We've seen a few phishing attempts today, if you've received a strange DM and it takes you to a Twitter login page, don't do it!," Twitter wrote on its Spam message page. <p>The message reads, "hi. this you on here?" and includes a link to a fake Web site designed to look like a Twitter log-in page. After entering a user name and password, victims enter an empty blogspot page belonging to someone named NetMeg99. <p>Neither of these pages appears to include any type of attack code, but both should be considered untrustworthy, according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. Sophos Technology Consultant Graham Cluley Graham Cluley is a British computer programmer and 'Senior Technology Consultant' at Sophos. He is very well known in the anti-virus industry, and his corporate biography[1] . "It seems like this was a straightforward phishing campaign, rather than an attempt -- at this stage at least -- to spread virally," he said via email. <p>Victims get these direct messages only from people they follow on Twitter, so they seem more believable than other types of spam. Once a user has been phished by the attack, the criminals are then able to direct message all of the victim's contacts with the phishing spam. <p>"These sort of things have been happening for over a year on Twitter," Cluley said in an interview.<p>Hacked Twitter accounts are a great launching pad for more attacks, Cluley said. "We don't know Don't know (DK, DKed) "Don't know the trade." A Street expression used whenever one party lacks knowledge of a trade or receives conflicting instructions from the other party. precisely what they're going to do in this case, but often they will send spam messages to advertise a particular site." <p>Because about a third of users have the same passwords for all of their online activity, criminals can also use the same log-in information to try to get into other Web services (1) Loosely, any online service delivered over the Web. Such usage appears in articles from non-technical sources, but not in IT-oriented publications, because definition #2 below describes the correct use of the term. such as Gmail or Yahoo, Cluley said. <p>"If you've fallen for one of these traps, don't just change your Twitter password; change your password on every Web site you use," Cluley siad. "Use non-dictionary words and use something that's hard to guess." <p>The Twitter attack comes as Facebook users are also under siege. Security researchers say that a spam botnet is has sent out hundreds of thousands of fake password reset messages. When victims try to open an attachment that supposedly contains their new password, they end up running a Trojan horse See Trojan. Trojan Horse hollow horse concealed soldiers, enabling them to enter and capture Troy. [Gk. Myth.: Iliad] See : Deceit (application, security) Trojan horse program, called Bredolab, that then installs unwanted software on their PCs. <p>Copyright 2009 IDG IDG International Data Group IDG Integrated Drive Generator IDG Installation Design Guide IDG Internet Discussion Group IDG Inset Dielectric Guide IDG International Dangerous Goods (mail, shipping) Middle East. All rights reserved. Provided by Syndigate.info an Albawaba.com company |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion