Lately popular micro-blogging platform Twitter has been hit by phishing scams! If you are getting a Twitter direct message reading: “check out this funny blog about you”, don’t click the link. Because it will redirect you to a fake Twitter login page on http://twitter.access-logins.com/login/, created by some phishers. If someone enters Twitter username and password on that site, their accounts could be hijacked by those phishers for sending direct spam messages on behalf of you. So, never enter your login details on unknown sites. At least give a look at the URL before entering your username and password.
On Saturday, Twitter quickly informed it’s users about the phishing attack through a status update:
If you receive an email notice saying you’ve received a Direct Message with a link that redirects to what seems like Twitter.com, be careful about entering your Twitter credentials. Instead, look closely at the URL to see if it’s not really Twitter but a sketchy phishing site like http://twitter.access-logins.com. If this has you feeling a bit weirded out, feel free to change your Twitter password.
After looking at the WHOIS report of that particular site, you can easily tell that the registrant is in China. But the good thing is that that fake site is now being blocked by all major web browsers except Internet Explorer. So, Firefox users don’t have to worry about it.
I wanted to see how the phishing site looks or how they are trying to make us fool! So, I opened that site on Internet Explorer and found that it is a den of phishing attacks. The main URL (http://twitter.access-logins.com) displays a fake Facebook login page (second screenshot), which takes the user to a URL similar to Facebook.com. It means that they are also trying to attack the Facebook users? But, one can easily stay away from that one by looking at the URL which includes the word ‘twitter’.
So, the bottomline is Internet is full of scams and frauds. If you want to stay away from them, never click suspicious links and never enter your login details on unknown sites.
Tweet
Subscribe via RSS
Connect via Twitter
I must have received over 30 of these messages from people i follow that have had there accounts hacked.
How many times do people need telling never ever follow links from emails that request login details.
This is really weird. People know how to find a illegal copy of software/movie online, but don’t know how to protect their own sensitive credentials. Thanks for leaving your comment here. I hope that at least some of those soon-to-be-hacked people will understand your words!
It’s helped me to thin down the folks I follow though!
Yep I had an email from a dodgy Twitter user recently and as always I hover over any links in my mail just to check what I’m letting myself in for – I wish I could remember the name – Jack something – anyway they are so outta here – first Twitter phisher for me – will be more careful who I follow from now on!
my God, thanks for Info,
been here for EC dropping but couldn’t see the widget. Have a great day!
Some people and may be include me think this is usual news on internet about hacking but it become more interested when we know whoes account were hacked. Like what we can see on tvkota.com
Hey thanks for that info. I think I got hit by that and did not realize it.
I had some weird things happen and my friends from facebook told me about it and I quickly changed my password.
thanks for the tip.
Hey Earnblogger,
Thanks for the heads up on this. Don’t you wonder why people do things like this, too much time on their hands or what? These are the same people who find amusement in hacking blogs or starting virus’s. Think there will ever come a time when these people will be found out and have to be accountable as in the courts of law or whatever? Again thanks for the heads up and I’m wishing you a very Happy New Year and prosperous one for all of us bloggers.
Wow, thanks for the warning!!!
Thanks for the heads up. My email accounts along with a few affiliate accounts were compromised by a phishing scam. It took me almost a month to get it cleared up. I’m still battling with one of my email host accounts now…lots of headache.
Thanks for the heads up! Reality (or in this case, virtuality) bites. If something is successful, there’s surely some people who want to hijack and take advantage of it.
Nice article. This article is provide is very reasonable entry.