Sophos: Twitter Phishing Scam Lures Users with TinyURL
The folks at Sophos are reporting a new phishing scam on Twitter.
In this episode of "When Malware Writers Attack," senior technology consultant Graham Cluley blogged that he received a message saying he was being followed on Twitter by someone called "3XNJTVJG0SYIKDH." This person was already following nearly 400 people on Twitter, and had only posted one update:
The tinyurl actually leads to the site tvviter.com. That's right, Tvviter, with two Vs. Clicking on the link leads to a site that poses as Twitter.com and will prompt visitors for their username and password.
The Website was blocked when I attempted to visit it using Mozilla Firefox, but appeared when I surfed there using Internet Explorer. According to Sophos, there are a number of usernames out there tied to the scam, some of which are listed here at the bottom of the page.
Reminder to Twitter users -- be careful when clicking on tinyurl addresses, and don't be afraid to take advantage of the Firefox add-on LongURL.