Have you heard that there is a bad blog about you? This message is the latest phishing scam hitting Twitter users via DM. If users click on the link and enter their password, scammers will instantly spam the user’s Twitter followers and also know the user’s password — though they may not change it. Unfortunately, if you have clicked through a link, you may never know what hit you.
This type of activity is known as phishing, which hits followers of Twitter users in a viral fashion as soon as one user is compromised. In weeks and months past, users have clicked on DMs warning there is something funny, something graphic, or something slanderous on the Internet about them. As these messages always come from someone a Twitter user is following, those receiving the message may be inclined to trust the validity of the message and click on the spam.
Now, Twitter is trying to take control of this situation, announcing today it is resetting passwords of Twitter accounts that have been phished. Thankfully, this restores accounts for those who have already been hijacked. Being phished on Twitter is, however, entirely avoidable. To avoid being phished on Twitter, don’t click on DMs from other users that include any type of the following message:
- “Someone is saying really nasty stuff about you here”
- “Saw a real bad blog about you”
- “Lol! Is this you in this pic?”
Also, Twitter will never DM or email you about “tweeting too much.” If you see these types of DMs, consider alerting the other uses they have fallen victim to a scam. And whatever you do, don’t click on the link.
Have you been phished on Twitter? Be sure to visit Twitter’s support center to help recover your account.