Is this you?? http://ReallyScaryLinkThatYouShouldNeverEverClickOnBecauseYouWillGetYourTwitterAccountHacked.com this is the Direct Message that has been tearing around the Twitterverse this week. From what I hear (since I would never ever click the link) is that it will take you to a login page where you end up putting in your Twitter username and pass and then now they have it, and they use it to send DM’s to all of YOUR followers.
So there it is… someone telling you that you are in a video or picture or something in your Direct Messages… you are tempted. Really? Who could have a video of me out there on the web? Did they get it from my facebook page? YouTube? So you click. Rule of thumb #1 – Never click any link that you aren’t sure what it is. This works for Twitter as well as Facebook, MySpace, Email, Instant Messenger… etc etc etc. I’ve even been known to confirm with my own sister that sent me a link having to do with our current conversation if she really sent me a link. You can’t be too paranoid about this kind of thing. Even if it isn’t a phishing attack that is only trying to get information, it could be something much much worse. Like a link to an actual virus. Best advice is to just confirm with the person who sent you the link if it’s legit or not.
So now that you’ve clicked it is asking you for your username and password. You think in your head… Hmmm that’s weird. (FIRST STOP RIGHT THERE! If you think it’s odd, then don’t continue!). The brief fleeting odd feeling goes away as you think, “oh I must have gotten logged out somehow”. So you enter you username and password. Rule of Thumb #2 – NEVER EVER enter your information from ANYTHNG from a link that you have clicked on. Open a new browser and go to the main website yourself. ie if the link send you to a Twitter login screen, open a NEW browser and navigate to twitter.com yourself. Then you know it’s safe to enter your username and password.
So now that you’ve given the phishers the information they wanted to gather from you and your account is compromised… it’s time for you to fix it. Rule of Thumb #3 – Change your info ASAP. If you gave them your password change it! And change it quick, because they will use it! If you gave them information that is far more damaging like your Social Security number or your bank account, notify the appropriate people BEFORE anything happens. Then monitor your credit score like a hawk.
So be smart and safe out there… and stop sending me phising DM’s please… Thank you!
This post may contain affiliate links, which means I receive compensation if you make a purchase using the links.
Great article! (Told you so on twitter too!)
I had received something strange in my DM yesterday and it was fortunately caught when I clicked to open. Being new to Twitter, I’m just finding my way around. Thanks for the great advice! Cheers!!
Well, I got a spam DM from my sister-in-law’s twitter account.
funny thing is, she hasn’t used Twitter since December of 2008.
Which means that she didn’t fall for a phishing attack, someone is aggresivley hacking into accounts.
.-= roneyii´s last blog ..roneyii: Just submitted my app, tuv, to the official Palm catalog. #palmpre #tlh =-.
I love your blog! In fact, I just gave you a blog award!! Check it out at http://dedeland.blogspot.com/2010/02/blogger-award.html
.-= Evelyn´s last blog ..Jar o’ Change update =-.
Thanks so much for the heads-up on the Twitter phishing (hadn’t heard!) and the friendly reminder about general internet safety (which I practice regularly!) I’m now a FB fan & following you on Twitter. will ask you some tech Q’s soon!
.-= SoCal FruGal´s last blog ..Cheap Thrills Tuesday =-.
I broke all three rules….why didn’t you tell me this yesterday? Hahaha
[…] that say they are from official sounding people because they usually aren’t, and are just phishingfor your information. So I perused the email with great skepticism, and figured I’d figure […]