Nissan to lay off thousands of workers as sales drop    Trump picks Susan Wiles as White House chief of staff    Three charged in connection with Liam Payne's death    Israel passes law to deport relatives of attackers, including citizens    Monkey mayhem in South Carolina after 43 primates escape research facility    Russian anti-war teenager faces five years in jail after failed appeal    Uproar in Ghana after president unveils his own statue    BD and INS partner to elevate standards of infusion care in MENAT    Qassim emir launches 52 health projects costing a total of SR456 million    Dubai Design Week launches its 10th edition, celebrating creativity and innovation    Fakeeh Care Group reports 9M-2024 net profit of SR195.3 million, up 49% y-o-y driven by solid revenue growth and robust profitability    GASTAT: Passengers of public transport bus and train soar 176% and 33% respectively in 2023    HRT does not impact life expectancy — UK health body    Liam Payne's body to be flown back to the UK    Arab leaders and heads of state congratulate US President-elect Donald Trump    Neymar suffers muscle tear, out for 4-6 weeks    Suspect arrested for banking fraud totaling SR493 million as Nazaha pursues corruption charges    Al Nassr secures 5-1 victory over Al Ain to edge closer to knockout stage    Al Ahli extends perfect start with 5-1 victory over Al Shorta    Mitrovic's hat-trick leads Al Hilal to 3-0 victory over Esteghlal    India puts blockbuster Pakistani film on hold    The Vikings and the Islamic world    Filipino pilgrim's incredible evolution from an enemy of Islam to its staunch advocate    Muted Eid celebrations for millions of Nigerian Muslims    Exotic Taif Roses Simulation Performed at Taif Rose Festival    Asian shares mixed Tuesday    Weather Forecast for Tuesday    Saudi Tourism Authority Participates in Arabian Travel Market Exhibition in Dubai    Minister of Industry Announces 50 Investment Opportunities Worth over SAR 96 Billion in Machinery, Equipment Sector    HRH Crown Prince Offers Condolences to Crown Prince of Kuwait on Death of Sheikh Fawaz Salman Abdullah Al-Ali Al-Malek Al-Sabah    HRH Crown Prince Congratulates Santiago Peña on Winning Presidential Election in Paraguay    SDAIA Launches 1st Phase of 'Elevate Program' to Train 1,000 Women on Data, AI    41 Saudi Citizens and 171 Others from Brotherly and Friendly Countries Arrive in Saudi Arabia from Sudan    Saudi Arabia Hosts 1st Meeting of Arab Authorities Controlling Medicines    General Directorate of Narcotics Control Foils Attempt to Smuggle over 5 Million Amphetamine Pills    NAVI Javelins Crowned as Champions of Women's Counter-Strike: Global Offensive (CS:GO) Competitions    Saudi Karate Team Wins Four Medals in World Youth League Championship    Third Edition of FIFA Forward Program Kicks off in Riyadh    Evacuated from Sudan, 187 Nationals from Several Countries Arrive in Jeddah    SPA Documents Thajjud Prayer at Prophet's Mosque in Madinah    SFDA Recommends to Test Blood Sugar at Home Two or Three Hours after Meals    SFDA Offers Various Recommendations for Safe Food Frying    SFDA Provides Five Tips for Using Home Blood Pressure Monitor    SFDA: Instant Soup Contains Large Amounts of Salt    Mawani: New shipping service to connect Jubail Commercial Port to 11 global ports    Custodian of the Two Holy Mosques Delivers Speech to Pilgrims, Citizens, Residents and Muslims around the World    Sheikh Al-Issa in Arafah's Sermon: Allaah Blessed You by Making It Easy for You to Carry out This Obligation. Thus, Ensure Following the Guidance of Your Prophet    Custodian of the Two Holy Mosques addresses citizens and all Muslims on the occasion of the Holy month of Ramadan    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



When social networking gets attacked
By Riva Richmond and Jeremy Kirk
Published in The Saudi Gazette on 29 - 05 - 2009

Facebook is no longer alone in its troubles. Twitter is also becoming a target of phishers. The last few days have seen a slew of Twitter phishing attacks, possibly orchestrated in a chess-like multi-move plan that resulted in three sets of victims and, very likely, some seedy profits.
The scheme appears to have begun Thursday with the creation of bogus Twitter accounts, which the scammers used to “follow” other users, says Rik Ferguson, a senior security adviser at the security-software maker Trend Micro. If these users checked out the profiles of their new followers and clicked on the Web addresses there, they were redirected to a fake Twitter site where they were prompted to hand over their passwords. In a smooth move, the site's address was tvviter.com (notice the double “v” and single “t”), likely an effort to reassure anyone who glanced at the address bar.
To increase the odds of this all happening, the bogus users were usually “hot women,” Mr. Ferguson says. “It's always preying on blokes being stupid, which is about right.”
From there, the marks were passed back to the real Twitter and provided some additional new, hot followers. If they visited those followers' profiles and clicked on the Web links there, they were off to see some fairly X-rated “dating” sites. Mr. Ferguson suspects the scammers were earning money from the dating sites for each click from these potential customers.
The phishers also launched another phishing effort. From the accounts they compromised, they tweeted messages cheerfully telling followers “there is this funny blog going around” and offering a shortened URL that led, once again, to a fake Twitter page encouraging people to type in their passwords. Within a few hours, thankfully, Twitter cleaned up all these messages about the funny blog and reset those peoples' passwords.
But there was still the matter of people who went to read the “funny blog” and gave away their passwords. Twitter didn't know who this third group of victims were. Well, that mystery may have been solved on Sunday, when hacked accounts were used to tweet large amounts of spam pushing $5 acai berry diet supplements. (Those were soon followed by apologetic tweets from the owners of said accounts.)
Worm-like Phishing Attack
Twitter users have been tricked into divulging their login and password details to a Web site that then spammed their contacts.
The culprit is a Web site called TwitterCut. Some Twitter users began getting a message that appeared to be from one of their friends and included a link to the TwitterCut Web site. The message implied they could gain more Twitter contacts by following the link.
At one time TwitterCut looked quite similar to the real Twitter login page, said Mikko Hypponen, chief research offer for the security vendor F-Secure. If a person entered their login details, TwitterCut would then send the same message via Twitter to all of the victim's contacts, a kind of phishing attack with worm-like characteristics. No malicious software is installed on a user's machine, Hypponen said.
Although TwitterCut probably holds the login details for many accounts, it doesn't appear those accounts have been used to spam out links to more dangerous Web sites.
TwitterCut's Web site has been reported to services that blacklist potentially harmful Web sites, although it is still active. In a warning message now on TwitterCut, the site's operators said they didn't mean to phish people.
Instead, they say they were trying to create a so-called Twitter Train, which are sites that purport to quickly give Twitter users lots of followers. They said they bought the login script on their site for US$50.
“We were not phishing Twitter accounts whatsoever,” the message said. “We're shutting down this site.”
Hypponen said Twitter should be on the lookout for signs of spam, such as when an identical message appears hundreds and hundreds of times across users' profiles that isn't a “retweet,” or the intentional reposting of other content.
Twitter could also screen URLs (Uniform Resource Locators) to make sure they're not already blacklisted for security issues, Hypponen said.
Many Web browsers as well as search engines will either warn about or block suspicious Web sites.
Most URLs posted in Twitter have been shortened using services such as TinyURL in order to fit in the 140-character message length that Twitter imposes, obscuring the real destination and making users dependent on the trustworthiness of their friends when clicking links. The service was hit by other worms earlier in the year.
Twitter acknowledged the phishing problem late Tuesday night. “We are currently pushing a password reset on accounts we believe may have been caught in a phishing scam,” the company said. “Please exercise your best judgment when thinking about releasing your username and password to third parties.”


Clic here to read the story from its source.