There's a popular new phishing technique on Twitter that a lot of people are falling for.
Someone you follow on Twitter--maybe even someone you trust--sends you a DM (direct message) that encourages you to click on a link. Some of the come-ons I've seen include:
- Is this you? [bogus link]
- I just found out my iq from [bogus link]
- I made $426.23 online today with [bogus link]
- I make money online with google. i learned how here [bogus link]
- I've got pictures of @therichbrooks naked. Check them out here: [bogus link]
It's amazing how many people fall for that last one.
The reason why spammers are sending these phishing attempts via DM is so that the account owner is less likely to see them until too many of them have gone out through their account.
If someone on Twitter DMs you with something that seems phishy, don't click on it. Instead, DM that person back and ask if they meant to send that last DM. I often just send a message:
I think ur acct may have been hacked; u should change ur pw.
Because that's how I roll.
Only you can prevent phishing scams!
Better yet, never click on a link in an email or DM! It's a 100% security rule that works... a 100% of the time.
Say you receive an email or DM w/ a link in it. If you copy and paste that link - as opposed to clicking on it - you will go where the link is advertising it goes, as opposed to where it is programmed to send you. Note that the two may be different!
You can also go to the website yourself, especially in cases of "Your paypal account was suspended" sort of scam. If it really was, you don't need to follow the link to figure it out. Going to the actual website yourself, if the account was really suspended, you will be warned about it upon arrival.
Dave Jacquet
InfoSecurus CEO
Posted by: Dave from InfoSecurus | November 05, 2009 at 03:34 PM
I fell for the last one.
Posted by: Josh Hurley | November 05, 2009 at 03:50 PM
C'mon, Josh. You know all you have to do is ask! ;)
Posted by: Rich Brooks | November 05, 2009 at 03:59 PM
Never clicking is the best option.
Posted by: Mike from Drop Ship | November 05, 2009 at 10:04 PM
Q: If you're using power twitter does that help you to see the REAL link? Would that give any protection against the scam?
@juliebavi
Posted by: Julie Bavington | November 06, 2009 at 03:24 PM
A. It might help you to see the real link, but it won't offer any protection against the scam if you still click that link, just more information to make a decision.
Posted by: Rich Brooks | November 06, 2009 at 03:47 PM
Thank for the info, next time I'll be careful there are lots of site that shortens the main link, I'll try not to check one unless it's safe
Posted by: 2Go Media | November 09, 2009 at 08:23 PM