Twitter Security Warning for All Users – Beware of CNBC.com Spoof Messages and Spam
We have a security alert for all of you Twitter fans out there. Recently we have seen a few cases (okay, maybe more than a few) of people who have had their Twitter handle post things that they did not intend to be posted. Unfortunately, many users are unaware these are being posted from their Twitter account.
The verbiage goes something like this:
“I have had great success following this. just PLEASE view this link: http://cnbc[dot]com-mother[dot]in/?Article=92747657885_S1NUM8_JUNE2012”
Please note: I would not advise you to visit the link above unless you know that your computer is properly configured to handle potential phishing/malware attacks. Although we have not found anything dangerous about the link yet, we recommend erring on the side of caution.
After a little research we found that these messages are not new, in fact some of them are very old and have been recycled from older posts. However, this does not reduce the severity of the situation, the messages are circulating like wildfire and they are being posted in the from of direct messages, replies, and general posts.
Here's a screen shot of recent spoofed cnbc.com Twitter Messages:
Here's a screen shot of spoofed cnbc.com Twitter direct messages (DM's):
Our best guess is that the link itself is not extremely hazardous. Our basic surmise is that people who have had their accounts hacked in the past, as well as people who currently have weak passwords are being used as bullhorns to, again, circulate the message across the Twittersphere.
These csnbc.com links are spoofed (fake) links to trick you!
See the spoof? Look at the link “cnbc[dot]com-index02.info“, this link is not actually cnbc.com.
Once users visit the link, they see the CNBC site in an intact cloned form. This gives the site some credibility in some user's eyes and then the users have no apprehensions when they read the story featured on that page about how a work at home mom makes so much money-per-hour, along with a link allowing them to buy the (probably useless and fake) program.
Is your Twitter Account compromised? Are you sending or receiving spoofed messages?
So, the best things you can do at this point if you are a victim, or if you feel that you might be vulnerable to the attack would be to change your Twitter password to something a much more secure, and ensure that when clicking on links, you take a second glance at them and ensure that you know what site you're actually headed to.
Another area to check is your Twitter authorized apps. Go to your Twitter Settings > Apps and “Revoke Access” and re-authorize only the apps that you use. This will clear them out in case one was compromised. For more information check the Twitter Help Center.
Be sure to view your Twitter Profile and delete any spoof messages that have been sent from your account and delete any spoofed Direct Messages (DM's).
How can this affect your WordPress Security?
If your Twitter account is posting spoofed messages and you have your Twitter feed on your website, it will show up there. Your readers will lose trust. Delete those messages ASAP.
Do your part in helping other Twitter users. If you're receiving spoofed DM's or messages, contact the sender and let them know.
Leave Your Feedback
Has your Twitter account been compromised? Are you sending or receiving spoof messages? Know of another spoof url besides cnbc that others should watch for? Share your comment below.