{"id":5865,"date":"2017-01-18T22:53:19","date_gmt":"2017-01-18T22:53:19","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/01\/18\/news-70\/"},"modified":"2017-01-18T22:53:19","modified_gmt":"2017-01-18T22:53:19","slug":"news-70","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/01\/18\/news-70\/","title":{"rendered":"More phishy sponsored tweets"},"content":{"rendered":"

Another day, another couple of rogue sponsored tweets [1<\/a>], [2<\/a>] which lead to phishing.<\/p>\n

\n

There is a 0% chance this isn’t a phishing scheme pic.twitter.com\/GvfwL6iUuf<\/a><\/p>\n

\u2014 Mourt Goldman (@Ryan_Mourton) January 8, 2017<\/a><\/p>\n<\/blockquote>\n

The account pushing the first phish has now been deleted, but it’s trivial to set up another one – and the phishing URL itself is still active, ready to be redeployed at a moment’s notice.<\/p>\n

Shall we take a look?<\/p>\n

The site is located at<\/p>\n

verifiedaccounts(dot)us<\/p>\n

and – like the older versions of this scam – is all about getting yourself verified.<\/p>\n

\"Phishy<\/a><\/p>\n

The site kicks things off by asking for username, email address, account type, phone number, year of account creation, and (finally) associated password. It’s not long before they’re sniffing around your wallet, too…<\/p>\n

\"Got<\/a><\/p>\n

\n

“Please add a valid method of payment. We require you to link a credit card for identity verification purposes. You will not be charged. “<\/em><\/p>\n<\/blockquote>\n

If we had to guess, phished Twitter feeds\u00a0go into the pool of newly renamed “Twitter help \/ support \/ verification” accounts used in sponsored adverts.<\/p>\n

Elsewhere, we have another one<\/a> which follows the same pattern as above.<\/p>\n

We strongly advise all users of Twitter to be on their guard – just because a tweet is sponsored, doesn’t mean the content it leads to is legitimate. Be on your guard and don’t hand over login details, payment credentials, or anything else to sites claiming they can get you verified.<\/p>\n

 <\/p>\n

Christopher Boyd<\/em><\/p>\n

https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"\n\n\n
<\/a><\/td>\n<\/tr>\n
Watch out: sponsored Tweets leading to phishing pages are doing the rounds once more. We take a look at the latest phishing scam being pushed to unsuspecting Twitter users, and show how the scammers are after a double-whammy of login credentials and credit card information.<\/p>\n

Categories: <\/p>\n