[TWITTER PHISHING] Someone is Posting a Pic of You All over Twitter

There is a new Phishing Spam/Scam spreading across twitter via Direct Messages (DM). The content of the message has many formats, The most common one being “Someone is Posting a Pic of You All over Twitter ;( %then a link to the phishing page here%”.

Currently I have seen three formats of the spam message:

  1. Someone is Posting a Pic of You All over Twitter ;( %then a link to the phishing page here%
  2. This must be you… %then a link to the phishing page here%
  3. LOL.. you look good in this photo album..%then a link to the phishing page here%

The motive of this spam is to get the login credentials of the twitter user, This is a virally spreading spam. So don’t click on the link in the Direct Message.

The link to the phishing page if actually seen is a look alike of Twitter.Com URL which makes the user enter their login details on the page. The page is also designed in such a way so as to replicate the original twitter homepage.

I am Sharing the Screensnaps of the message and the twitter phishing page below, Do take a look at them and avoid them at all cost.


Twitter Phishing Message

Twitter Phishing Message

The Longurl Snapshot of the Link Included in the DM

Twitter Phishing URL Unmasked

Twitter Phishing URL Unmasked

The Firefox Warning

Mozilla Blocked Twitter Phishing Page

Mozilla Blocked Twitter Phishing Page

Its a good news that mozilla and other important browsers are blocking access to the page.

What is Phishing?

Phishing is a fraudulent attempt, usually made through email, to steal your personal information. The best way to protect yourself from phishing is to learn how to recognize a phish.Phishing emails usually appear to come from a well-known organization and ask for your personal information — such as credit card number, social security number, account number or password. Often times phishing attempts appear to come from sites, services and companies with which you do not even have an account.In order for Internet criminals to successfully “phish” your personal information, they must get you to go from an email to a website. Phishing emails will almost always tell you to click a link that takes you to a site where your personal information is requested. Legitimate organizations would never request this information of you via email.

How to Protect Yourself from Phishing?

  • Identify Fake Emails.
  • Never click on unknown and uncommon links may it be in messages or social networks.
  • When you have a shortened URL sent to you, Never click on it without expanding it thorough FREE services like LongURL.ORG.

These were some tips to protect your online accounts.

If you unknowingly clicked on the link and entered your Login Details in the twitter phishing page then change your password as soon as possible.

Do share this post on social networks especially twitter to make others aware of the spam/phishing.


Leave a Reply

Your email address will not be published. Required fields are marked *

2 + eight =

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>