«
»

Avoiding Twitter Phishing Scams: Don’t Click On That Link

There’s a popular new phishing technique on Twitter that a lot of people are falling for.

Someone you follow on Twitter–maybe even someone you trust–sends you a DM (direct message) that encourages you to click on a link. Some of the come-ons I’ve seen include:

  • Is this you? [bogus link]
  • I just found out my iq from [bogus link]
  • I made $426.23 online today with [bogus link]
  • I make money online with google. i learned how here [bogus link]
  • I’ve got pictures of @therichbrooks naked. Check them out here: [bogus link]

It’s amazing how many people fall for that last one.

The reason why spammers are sending these phishing attempts via DM is so that the account owner is less likely to see them until too many of them have gone out through their account.

If someone on Twitter DMs you with something that seems phishy, don’t click on it. Instead, DM that person back and ask if they meant to send that last DM. I often just send a message:

I think ur acct may have been hacked; u should change ur pw.

Because that’s how I roll.

Only you can prevent phishing scams!

Rich Brooks
Something’s Phishy

Tags: ,

Flyte Toolbox - E-Junkie

This entry was posted on Thursday, November 5th, 2009 at 3:27 pm and is filed under Social Media. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

7 Responses to “Avoiding Twitter Phishing Scams: Don’t Click On That Link”

  1. Dave from InfoSecurus says:
    November 5, 2009 at 3:34 pm

    Better yet, never click on a link in an email or DM! It's a 100% security rule that works… a 100% of the time.

    Say you receive an email or DM w/ a link in it. If you copy and paste that link – as opposed to clicking on it – you will go where the link is advertising it goes, as opposed to where it is programmed to send you. Note that the two may be different!

    You can also go to the website yourself, especially in cases of "Your paypal account was suspended" sort of scam. If it really was, you don't need to follow the link to figure it out. Going to the actual website yourself, if the account was really suspended, you will be warned about it upon arrival.

    Dave Jacquet
    InfoSecurus CEO

  2. Josh Hurley says:
    November 5, 2009 at 3:50 pm

    I fell for the last one.

  3. Rich Brooks says:
    November 5, 2009 at 3:59 pm

    C'mon, Josh. You know all you have to do is ask! ;)

  4. Mike from Drop Ship says:
    November 5, 2009 at 10:04 pm

    Never clicking is the best option.

  5. Julie Bavington says:
    November 6, 2009 at 3:24 pm

    Q: If you're using power twitter does that help you to see the REAL link? Would that give any protection against the scam?
    @juliebavi

  6. Rich Brooks says:
    November 6, 2009 at 3:47 pm

    A. It might help you to see the real link, but it won't offer any protection against the scam if you still click that link, just more information to make a decision.

  7. 2Go Media says:
    November 9, 2009 at 8:23 pm

    Thank for the info, next time I'll be careful there are lots of site that shortens the main link, I'll try not to check one unless it's safe

Leave a Reply