computerwoche.de

Archiv

Twitter Gains Upper Hand on Latest Scam

29.06.2009
Sometimes, it seems scams are becoming almost as common as on . The latest one, unleashed Monday morning and initially noticed by tech blog , centers on a fake blog hosted at the domain twittersblogs.com. Tweets containing links to the site circulated rapidly, each featuring the message: "omg!! is it true what they wrote about you in their twit blog?"

Inside the Twitter Scam

Clicking on the twittersblogs.com link takes you to a page designed to look exactly like the real Twitter login page -- except, of course, it isn't. Entering your username and password simply puts your access information into the hands of the hackers, allowing them to login to your Twitter account and use it as they wish.

In this instance, it appears the site primarily used compromised accounts to spread the phishing links further. What, if any, broader goal was behind the effort is not yet clear.

Testing the Twitter Waters

As of this publication, Twitter has yet to mention the scam on its or . When I tested the twittersblogs site using a dummy account, however, the phishing tweet did not get sent (despite my having submitted the account's username and password).