Comments on: Twitter phishing scam http://boingboing.net/2010/02/24/twitter-phishing-sca.html Brain candy for Happy Mutants Wed, 19 Jun 2013 16:19:00 +0000 hourly 1 http://wordpress.org/?v=3.4.1 By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720669 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720669 It's gotten to the point where I never click through to any page that asks for username and password, no matter who's asking. I'll type in the URL and go from there. Otherwise, I'm sure there's some phishing scam that can fool me, somehow, someday. It’s gotten to the point where I never click through to any page that asks for username and password, no matter who’s asking. I’ll type in the URL and go from there. Otherwise, I’m sure there’s some phishing scam that can fool me, somehow, someday.

]]> By: Jerril http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-721195 Jerril Wed, 30 Nov -0001 00:00:00 +0000 #comment-721195 I have been known to use multiple punctuation marks, but only for self-mockery - basically dogwhistling to people that know me that I'm being ironic or sarcastic or rhetorical, and not particularly serious either way. I have been known to use multiple punctuation marks, but only for self-mockery – basically dogwhistling to people that know me that I’m being ironic or sarcastic or rhetorical, and not particularly serious either way.

]]> By: SamSam http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720951 SamSam Wed, 30 Nov -0001 00:00:00 +0000 #comment-720951 ??? It seemed reasonable that a kidnapped elderly lady would use Facebook's chatting to contact her loved ones in an emergency like that? I guess I don't know your aunt. For all I know, some people might even put this stuff on their gmail status messages. "<i>SamSam is... currently being held at gunpoint. Can anyone send a million dollars to Nigeria for me?</i>" ??? It seemed reasonable that a kidnapped elderly lady would use Facebook’s chatting to contact her loved ones in an emergency like that?

I guess I don’t know your aunt. For all I know, some people might even put this stuff on their gmail status messages. “SamSam is… currently being held at gunpoint. Can anyone send a million dollars to Nigeria for me?

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720703 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720703 This is a prime example why you should also always have a different user/pass for various sites. Even if you changed your twitter pass, if they have your information what are the odds it is the same for your bank, facebook, gmail, etc. Cory may do this already but I bet a lot of readers don't. This is a prime example why you should also always have a different user/pass for various sites. Even if you changed your twitter pass, if they have your information what are the odds it is the same for your bank, facebook, gmail, etc. Cory may do this already but I bet a lot of readers don’t.

]]> By: hhype http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720713 hhype Wed, 30 Nov -0001 00:00:00 +0000 #comment-720713 I am with bigboing (#1) on this one. if the great Cory Doctorow, who I imagine is 1,000,000 times more proficient and aware of these type of computer hijinks can be tricked then I have no hope of surviving out here in the world. This is like Norm Abrams cutting himself in his woodshop. This is like Apollo Ohno slipping on the ice. This is like Canada losing to the US in men's hockey, oh wait... You're right about the distractions. Obfuscating the URL and using the social engineering technique of coming from a friend are all classics to put as at ease and off our guard. I am going to turn up my web paranoia dial for the time being. I am with bigboing (#1) on this one. if the great Cory Doctorow, who I imagine is 1,000,000 times more proficient and aware of these type of computer hijinks can be tricked then I have no hope of surviving out here in the world.

This is like Norm Abrams cutting himself in his woodshop.

This is like Apollo Ohno slipping on the ice.

This is like Canada losing to the US in men’s hockey, oh wait…

You’re right about the distractions. Obfuscating the URL and using the social engineering technique of coming from a friend are all classics to put as at ease and off our guard. I am going to turn up my web paranoia dial for the time being.

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720718 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720718 Oh crap I use the multi question mark thing all the time... I'm not a spambot!! I swear!!! Oh crap I use the multi question mark thing all the time… I’m not a spambot!! I swear!!!

]]> By: Ugly Canuck http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720719 Ugly Canuck Wed, 30 Nov -0001 00:00:00 +0000 #comment-720719 Like this phishing scam, our recent loss to the Great Republic to the South may have just been a head fake. Like this phishing scam, our recent loss to the Great Republic to the South may have just been a head fake.

]]> By: MrJM http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720743 MrJM Wed, 30 Nov -0001 00:00:00 +0000 #comment-720743 RT @doctorow: Ignore anything that uses multiple question marks for emphasis. Even if it's not a scam it's probably too dumb to read. RT @doctorow: Ignore anything that uses multiple question marks for emphasis. Even if it’s not a scam it’s probably too dumb to read.

]]> By: GrahamCluley http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720771 GrahamCluley Wed, 30 Nov -0001 00:00:00 +0000 #comment-720771 I made a video of this phishing attack and posted it on YouTube: http://www.youtube.com/watch?v=yFVqfgnZV6M As well as changing their passwords, folks hit by this attack should also their the Settings/Connections settings on their Twitter account. If there are any third party applications you don't recognise listed there, revoke their permission to access your account. Cheers Graham Cluley, senior technology consultant, Sophos I made a video of this phishing attack and posted it on YouTube:

http://www.youtube.com/watch?v=yFVqfgnZV6M

As well as changing their passwords, folks hit by this attack should also their the Settings/Connections settings on their Twitter account. If there are any third party applications you don’t recognise listed there, revoke their permission to access your account.

Cheers
Graham Cluley, senior technology consultant, Sophos

]]> By: WeightedCompanionCube http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720798 WeightedCompanionCube Wed, 30 Nov -0001 00:00:00 +0000 #comment-720798 This is a good example of why SSO systems like OAuth are a good idea. I'm automatically logged into Facebook as long as I'm logged into Google. For some reason it doesn't ALWAYS work (cookies do expire) but it works enough that if I get a "Facebook" login screen, I check twice. Can twitter do this? This is a good example of why SSO systems like OAuth are a good idea. I’m automatically logged into Facebook as long as I’m logged into Google. For some reason it doesn’t ALWAYS work (cookies do expire) but it works enough that if I get a “Facebook” login screen, I check twice.

Can twitter do this?

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720806 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720806 It's like the child and the hot stove, you get warned about it, and you get warned about it some more, but it's not until you actually get burned that you REALLY learn it. My learning experience was back in 1999 or 2000. I was in the middle of trying to leave AOL and got a phished for my acct # and CC#. It's not until you the moment that you release the "SUBMIT" button that realize your mistake. It’s like the child and the hot stove, you get warned about it, and you get warned about it some more, but it’s not until you actually get burned that you REALLY learn it.

My learning experience was back in 1999 or 2000. I was in the middle of trying to leave AOL and got a phished for my acct # and CC#. It’s not until you the moment that you release the “SUBMIT” button that realize your mistake.

]]> By: geech http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720810 geech Wed, 30 Nov -0001 00:00:00 +0000 #comment-720810 thou shalt not tweet thou shalt not tweet

]]> By: Enoch_Root http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720832 Enoch_Root Wed, 30 Nov -0001 00:00:00 +0000 #comment-720832 Its ok you can fess up to what really distracted you. The cape was flapping in your face and you were a little loopy from the altitude. This is why you should always follow the advice laid out in Ferdinand Adolf Heinrich August Graf von Zeppelin's famous manual for high altitude airship safety. Its ok you can fess up to what really distracted you. The cape was flapping in your face and you were a little loopy from the altitude. This is why you should always follow the advice laid out in Ferdinand Adolf Heinrich August Graf von Zeppelin’s famous manual for high altitude airship safety.

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720582 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720582 The only excuse for doing that is it being past 1am... The only excuse for doing that is it being past 1am…

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720583 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720583 I fell for it too. Was on a mobile phone. Luckily, I realised straight away what had happened and changed my password. I fell for it too. Was on a mobile phone. Luckily, I realised straight away what had happened and changed my password.

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720584 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720584 I was tricked by one for last.fm. It was also from my phone. :( Funny thing is, the fake site gives you an "incorrect password" message when you try to log in. So, and I expect anyone could make this mistake, I proceeded to enter many of my passwords for the many different sites I use trying to figure out what I was doing wrong. I was tricked by one for last.fm. It was also from my phone. :(

Funny thing is, the fake site gives you an “incorrect password” message when you try to log in. So, and I expect anyone could make this mistake, I proceeded to enter many of my passwords for the many different sites I use trying to figure out what I was doing wrong.

]]> By: bigboing http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720586 bigboing Wed, 30 Nov -0001 00:00:00 +0000 #comment-720586 What chance does a simpleton stoop like me have against the evil force of fresh phish? What chance does a simpleton stoop like me have against the evil force of fresh phish?

]]> By: Pippin http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720587 Pippin Wed, 30 Nov -0001 00:00:00 +0000 #comment-720587 I'm sorry to hear that you were phished - how annoying! - but I also think it's secretly kind of great for people to see that this kind of thing can happen to absolutely anyone. I think we can all be a little too confident that we, the technologically awesome, will never fall for this kind of attack. So, thanks for taking that bullet and reminding me not to be too certain of myself in that regard. I’m sorry to hear that you were phished – how annoying! – but I also think it’s secretly kind of great for people to see that this kind of thing can happen to absolutely anyone. I think we can all be a little too confident that we, the technologically awesome, will never fall for this kind of attack.

So, thanks for taking that bullet and reminding me not to be too certain of myself in that regard.

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720592 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720592 [Hell, I think that a good rule of thumb is to ignore anything that uses multiple question marks for emphasis.] Get out of my head! [Hell, I think that a good rule of thumb is to ignore anything that uses multiple question marks for emphasis.]

Get out of my head!

]]> By: DarwinSurvivor http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720594 DarwinSurvivor Wed, 30 Nov -0001 00:00:00 +0000 #comment-720594 Haha, when I clicked the link in my feed reader, boingboing's css sheet to a while to kick in (didn't show the login field rigth for comments) so for a second there I though *this* was a phishing site :P Anyway, I find my password manager works as a very good anti-phishing feature. If firefox doesn't auto-add my username/password to the login fields, it's a clue for me to double-check the url before typing anything in :D Haha, when I clicked the link in my feed reader, boingboing’s css sheet to a while to kick in (didn’t show the login field rigth for comments) so for a second there I though *this* was a phishing site :P

Anyway, I find my password manager works as a very good anti-phishing feature. If firefox doesn’t auto-add my username/password to the login fields, it’s a clue for me to double-check the url before typing anything in :D

]]> By: sirgregg http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720595 sirgregg Wed, 30 Nov -0001 00:00:00 +0000 #comment-720595 I checked the site from Cory's tweet and Firefox actually shows a phishing warning. Still, you should always think about what you click and remember too look at the address bar every now and then. I checked the site from Cory’s tweet and Firefox actually shows a phishing warning. Still, you should always think about what you click and remember too look at the address bar every now and then.

]]> By: Cory Doctorow http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720596 Cory Doctorow Wed, 30 Nov -0001 00:00:00 +0000 #comment-720596 I think the primary prerequisite for this kind of phishing attack is that the target be distracted... I Was in the line at the coffee shop, I had a new phone that didn't have my stored passwords in its browser (so I wasn't surprised to be prompted for a password), and I had a little screen that didn't prominently display the URL I was on. COmbine that with URL obfuscation from the URL shortener and the fact that the DM came from a (hacked) trusted source, and you have a pretty powerful attack. I just thank goodness that the hackers were slow off the mark. If I were them, I would have had a compromised machine ready to immediately change the password on any account that was successfully hacked, so to lock out the victim and prevent him from changing the password. I realized immediately what had happened, but it still took me about five minutes on my little phone to change my password. That's a pretty long gap in computer terms. I wonder how many passwords they're losing to their slowness? I think the primary prerequisite for this kind of phishing attack is that the target be distracted… I Was in the line at the coffee shop, I had a new phone that didn’t have my stored passwords in its browser (so I wasn’t surprised to be prompted for a password), and I had a little screen that didn’t prominently display the URL I was on. COmbine that with URL obfuscation from the URL shortener and the fact that the DM came from a (hacked) trusted source, and you have a pretty powerful attack.

I just thank goodness that the hackers were slow off the mark. If I were them, I would have had a compromised machine ready to immediately change the password on any account that was successfully hacked, so to lock out the victim and prevent him from changing the password. I realized immediately what had happened, but it still took me about five minutes on my little phone to change my password. That’s a pretty long gap in computer terms. I wonder how many passwords they’re losing to their slowness?

]]> By: lalo http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720597 lalo Wed, 30 Nov -0001 00:00:00 +0000 #comment-720597 Multiple question marks? How about this: - Stay away from anything that asks you for your twitter password - Follow @spam and/or @security — they warned us about this particular scam a few days ago Multiple question marks? How about this:

- Stay away from anything that asks you for your twitter password

- Follow @spam and/or @security — they warned us about this particular scam a few days ago

]]> By: indiecognition http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720598 indiecognition Wed, 30 Nov -0001 00:00:00 +0000 #comment-720598 but...why???? but…why????

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720599 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720599 i also got one of those, and clicked the link on my iphone. safari then told me that this was a "reported scam site" and if i really wanted to enter. needless to say i didn't. i also got one of those, and clicked the link on my iphone.
safari then told me that this was a “reported scam site” and if i really wanted to enter.

needless to say i didn’t.

]]> By: celynnen http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720857 celynnen Wed, 30 Nov -0001 00:00:00 +0000 #comment-720857 "Multiple exclamation marks are a sure sign of a diseased mind." “Multiple exclamation marks are a sure sign of a diseased mind.”

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720602 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720602 man... I always am a little 2 liberal with the usage of punctuation.. damn!!! man… I always am a little 2 liberal with the usage of punctuation.. damn!!!

]]> By: Anonymous http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720603 Anonymous Wed, 30 Nov -0001 00:00:00 +0000 #comment-720603 @cory in order to lock you out completely they would have to defeat the "forgot password + email" fallback. @cory in order to lock you out completely they would have to defeat the “forgot password + email” fallback.

]]> By: charlie98022 http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720606 charlie98022 Wed, 30 Nov -0001 00:00:00 +0000 #comment-720606 I saw this scam in Facebook, too. I saw this scam in Facebook, too.

]]> By: rose bush http://boingboing.net/2010/02/24/twitter-phishing-sca.html#comment-720608 rose bush Wed, 30 Nov -0001 00:00:00 +0000 #comment-720608 this happened to me (TWICE) as well. the only difference was MY id (twitter username) was the one used by the scammers. although it just looked like they were directing traffic to some websites. i kept my name but of course changed my password this happened to me (TWICE) as well. the only difference was MY id (twitter username) was the one used by the scammers. although it just looked like they were directing traffic to some websites. i kept my name but of course changed my password

]]>