Twitter Security Warning for All Users – Beware of CNBC.com Spoof Messages and Spam
We have a security alert for all of you Twitter fans out there. Recently we have seen a few cases (okay, maybe more than a few) of people who have had their Twitter handle post things that they did not intend to be posted. Unfortunately, many users are unaware these are being posted from their Twitter account.
The verbiage goes something like this:
“I have had great success following this. just PLEASE view this link: http://cnbc[dot]com-mother[dot]in/?Article=92747657885_S1NUM8_JUNE2012”
Please note: I would not advise you to visit the link above unless you know that your computer is properly configured to handle potential phishing/malware attacks. Although we have not found anything dangerous about the link yet, we recommend erring on the side of caution.
After a little research we found that these messages are not new, in fact some of them are very old and have been recycled from older posts. However, this does not reduce the severity of the situation, the messages are circulating like wildfire and they are being posted in the from of direct messages, replies, and general posts.
Here's a screen shot of recent spoofed cnbc.com Twitter Messages:
Here's a screen shot of spoofed cnbc.com Twitter direct messages (DM's):
Our best guess is that the link itself is not extremely hazardous. Our basic surmise is that people who have had their accounts hacked in the past, as well as people who currently have weak passwords are being used as bullhorns to, again, circulate the message across the Twittersphere.
These csnbc.com links are spoofed (fake) links to trick you!
See the spoof? Look at the link “cnbc[dot]com-index02.info“, this link is not actually cnbc.com.
Once users visit the link, they see the CNBC site in an intact cloned form. This gives the site some credibility in some user's eyes and then the users have no apprehensions when they read the story featured on that page about how a work at home mom makes so much money-per-hour, along with a link allowing them to buy the (probably useless and fake) program.
Is your Twitter Account compromised? Are you sending or receiving spoofed messages?
So, the best things you can do at this point if you are a victim, or if you feel that you might be vulnerable to the attack would be to change your Twitter password to something a much more secure, and ensure that when clicking on links, you take a second glance at them and ensure that you know what site you're actually headed to.
Another area to check is your Twitter authorized apps. Go to your Twitter Settings > Apps and “Revoke Access” and re-authorize only the apps that you use. This will clear them out in case one was compromised. For more information check the Twitter Help Center.
Be sure to view your Twitter Profile and delete any spoof messages that have been sent from your account and delete any spoofed Direct Messages (DM's).
How can this affect your WordPress Security?
If your Twitter account is posting spoofed messages and you have your Twitter feed on your website, it will show up there. Your readers will lose trust. Delete those messages ASAP.
Do your part in helping other Twitter users. If you're receiving spoofed DM's or messages, contact the sender and let them know.
Leave Your Feedback
Has your Twitter account been compromised? Are you sending or receiving spoof messages? Know of another spoof url besides cnbc that others should watch for? Share your comment below.
Hey Michael,
Thanks for letting everyone know about the cnbc.com spoof targeting Twitter users. I’ve checked my account and have deleted 7 spoofed direct messages and contacted those people that send them to me.
Hey Michael– I hate the DMs that say something like, “did you know people are saying bad things about you” or “someone just posted a bad photo of you”. I tend to unfollow them.
Thanks for the heads up. Checking now.
Hmm, I thought I just posted but it didn’t show up. So again, thanks Michael and thanks Regina for the heads up. Checking my Twitter now.
I follow myself via RSS feed to keep an eye on whether I have been hacked and posting messages I didn’t post. So far, so good!
Thank you all for commenting! That’s the key, staying vigilant and on top of those DMs. Also, keeping track of your passwords, and what you post on a regular basis is a good idea. You never know when something might be wrong.
My programmer is trying too persuade me to move to .net from PHP.
I have always disliked the idea because of the expenses.
But he’s tryiong none the less. I’ve been using Movable-type on various websites for about a year and
am anxious about switching to another platform.
I have heard good things about blogengine.net.
Is there a way I can transfer all my wordpress content into it?
Any helop would be really appreciated!