Consumer Blogs
- Consumer Threat Alerts (18)
- Consumer Threat Notices (3)
- Cyber Security Mom (182)
- Cyber Security Mum – Australia (29)
- Cyber Security Mum – India (53)
- eCommerce (5)
- Family Safety (75)
- Identity Theft (130)
- Mobile – Consumer (28)
- Robert Siciliano (154)
Feeds & Podcasts
Meet the Bloggers
Archive
- May 2012 (30)
- April 2012 (38)
- March 2012 (48)
- February 2012 (46)
- January 2012 (47)
- 2011 (477)
- 2010 (429)
- 2009 (378)
- 2008 (271)
- 2007 (354)
- 2006 (143)
Tags
$1 million guarantee, 3DS, 3G, 12 Scams of Christmas, 99 things, 419 scam, 2011 Threats Predictions, 2012, 2012 Security Predictions, Abbreviation, access to live fraud resolution agents, Account Takeover Scams, addiction, adult online content, advance-fee fraud, affiliate marketing schemes, Alex Merton-McCann, Android, android antivirus, Android security, android security app, animation, Anonymous, Anonymous Group, anti-malware, anti-phishing, anti-spam, anti-spyware, anti-theft, anti-virus, anti-virus program pops up, antivirus, Antivirus software, App Alert, Apple, application blacklisting, applications, app protection, apps, app safety, app security, ATM scams, ATM skimming, Australia, Back To School, Bad Apps, bank accounts, bank fraud, banking fraud, Belarus, Bernie Madoff, bill collectors call for nonpayment, Bin Laden Scams, BlackBerry, black hat hackers, blue screen, Bluetooth, book, bot, botnet, botnets, Brazil, Brent Sanders, Cameron Diaz, canada online scams, case study, celebrities, chain mails, Charity Phishing Scams, child identity theft, children online safety, children safety online, child safety, christmas, Christmas scams, christmas shopping, Christmas shopping concerns, Christmas shopping crimes, cloud apps, cloud security, college students, computer, computer issues, computers, computer security, computer support, Consumer, consumer threat alert, consumer threats, Consumer Threats Alert, cookies, Corporate Responsibility, counter identity theft, creating safe passwords, creating strong passwords, credit card fraud, credit card fraud and protection, credit card skimming, credit card thefts, credit fraud alerts, credit monitoring, credit monitoring and resolution, credit scores, customer service, Cyber, cyber addiction, cyberbullying, cyber bullying, Cybercrime, cybercrime, cybercriminal, cybercriminals, cyber criminals, cybercrooks, cyber ethics, cybermom, Cyber Monday shopping, cyber mum, cybermum, Cybermum India, cybersafe, cybersafety, cyber safety for women, Cyber savvy mom, cyber scams, cyberscams and identity theft, cyber security, cybersecurity concerns, cybersecurity mom, Cyber Security Mom, cybersquatter, cybersquatting, cyberterrorists, cyberthreats, dangerous searches, data breach, data breaches, data loss, Data Protection, dating scams, decade of cybercrime, deceptive online promotions, Deepika Padukone, denied credit, digital assets, digital assets worth, digital devices, digital gadgets, digital music and movie report, download, drivers license, drivers license identity theft, dumpster diving, e-card scams, e-mail id, easter, Easter scam, ecards, ecard spam, eCommerce, Email & Web Security, email accounts, email scam, email scams, email security, email spoofing, EMM, employment fraud, Employment Identity Theft Scams, encryption, Endpoint Protection, Epsilon, epsilon security breach, etiquette, exploiting real brand names, facebook, Facebook Security, Facebook spam, fake ant, fake anti-virus software, fake anti virus, Fake Anti Virus Scams, fake emails, Fake Identity, fake software, fake system tool programs, fake websites, families online, family, family identity safety, family online safety, family protection, Family Safety, Farmville, fictitious identity theft, financial scams, Firesheep, firewall, forwards, fraud, fraud resolution, fraud resolution agent assistance, fraudulent credit card or bank charges, Free gift card scam, Free giveaway scam, freely downloadable morphing tool, free money scam, free money scams, free WiFi spots, FTC, games, Gaza, geotag, gift cards and iPad promotions online, gift online shopping, gift scams, Global Payments, global threat intelligence, gmail, good parenting, google, government, GPS, hacker, Hackers, hackers steal credit card numbers and sensitive personal data, hacking, Hacktivism, harassment, heidi klum, Here you have worm, Hi5, Hispanic, hoax - slayer, holiday gifts, holiday malware, Holidays, holiday scams, holiday screensavers, holiday shopping, holiday shopping fraud, holiday websites, home network issues, household devices, how to set up wi fi, how to talk to kids, how to talk to teens, identify spam, identity fraud, identity fraud scams, identity protection, identity protection $1 million guarantee, identity protection alerts, identity protection fraud, identity protection surveillance, identity surveillance, identity theft, identity theft celebrities, identity theft expert, identity theft fraud, identity theft protection, identity theft protection identity protection fraud, identity theft protection product, identity theft resolution, identity theft ring, identity theft risk, identity theft scams, identity theft tax scams, Identity thieves and cybercriminals, identity threat protection, ID theft, IIM Bengaluru suicide case, illegal immigrants, impersonation, India, India cybermum, Indian kids, Indonesia, infected mobile apps, information collected by advertisers or social media marketing, innovation, insiders, internet addiction, internet connected devices, Internet filtering, internet identity trading surveillance, Internet monitoring, Internet Phishing Scams, internet privacy, Internet Safety, internet security, internet security tips, internet time limits, investment scams, iOS, iPad, iPad scams, iphone, IRS, IRS scams, itouch, Japan, japan earthquake malware, japan earthquake safe donation, japan earthquake scams, japan tsunami scams, job applications, John Bernard Campbell, kama sutra koobface, Katrina Kaif, keep family PC safe, keycatchers, keyloggers, kids, kids online behavior, kids online safety, kids safety, koobface, laptops, Late Payment Scam, legal identifier, linkedin, live access to fraud resolution agents, Location services, logging out of accounts, login details, Lori Drew, loss of gadgets, lost, lost or stolen driver’s license credit cards debit card store cards, lost or stolen Social Security card or Social Security number, lost or stolen wallet, lost wallet protection, lottery, mac, Mac antivirus, mac malware, Mac OS X, Mac OSX, Mac security, mac threat, mailbox raiding, Mail fraud, mail order bride spam, malicious apps, malicious files, malicious program, malicious sites, malicious software, malware, malware threats, malweb, managing personal affairs online, map, mapping the mal web, mass mailing worm, McAfee, Mcafee's Who Broke the Internet, McAfee-Synovate study, mcafee all access, McAfee AntiSpyware, McAfee Antivirus Plus, McAfee Consumer Threat Alert, McAfee Enterprise Mobility Management, McAfee Facebook page, McAfee Family Protection, McAfee Family Protection for Android, McAfee Identity Protection, mcafee identity theft protection, McAfee Initiative to Fight Cybercrime, McAfee Internet Security, McAfee Internet Security for Mac, mcafee internet security for mac; mcafee family protection for mac, mcafee mobile, McAfee Mobile Security, McAfee Q4 2011 Threat report, McAfee Safe Eyes, McAfee Safe Eyes Mobile, McAfee Scan and Repair, McAfee SECURE, McAfeeSECURE, mcafee secure shopping, McAfee Security Journal, McAfee security products, McAfee security software offer, McAfee Site advisor, McAfee SiteAdvisor, mcafee spamcapella, McAfee TechMaster services, McAfee Threat Predictions, mcafee threat report, mcafee total protection, mcafee wavesecure, McAfee® Internet Security Suite, medical identify theft, Medical identity theft, medical records, michael jackson, Microsoft, Mobile, mobile antivirus, mobile app, mobile applications, mobile apps, mobile banking, mobile carriers, Mobile Commerce, mobile devices and security threats, mobile devices issues, mobile identity security, mobile malware, mobile phones, mobile phone spyware, mobile protection, mobile safety tips, mobile scam, mobile security, mobile security app, mobile security software, mobile smartphone security, mobile threats, mobile wireless internet security concerns, Moira, Moira Cronin, mom, money laundering, monitor a child’s identity, monitor credit and personal information, monitoring, Morphing, most dangerous celebrities, Mother's day, mothering, mothering advice, mothering boys, mothering Internet safety, movies, multiple devices, multiple social security numbers, mum, Mummy blogger, myspace, mystery shoppers, National Cyber Security Awareness Week, national identification card, Netbook, netiquette, Network Security, new year resolution, New York Times, Nigerian 419 Scam, nigerian scam, Oak Ridge National Laboratory, Occupy Wall Street, OCTO, online, Online Backup, online banking, online banking safely, online book shopping, online bookstore, online child safety, online coupon scams, online danger, online dangers, online dating, online e-tailers, online ethics, online fraud, online game, online games, online game spam, online gaming, online harassment, online marketing sites, online personal data protection, online predators, online safety, online safety for kids, online safety of kids, online safety tips, online scams, online search, online security, online security education, online shopping, online shopping risks, online shopping scams, online shopping threats, online surfing, online survey scam, online threat, online threats, onlinethreats, online video, Operation Aurora, organized crime, organized criminals, oscars, parental advice, Parental control, parental controls, passport, password, password complexity check, passwords, password security, password stealer, PC, PC Addiction, PCI, PCI DSS, PCs, pc security, Peer to Peer file sharing, personal identity fraud, personal identity theft, personal identity theft fraud, personal information, personal information loss, personal information over mobile phones, personal information protection, Personal information security, personal privacy, personal protection, Phantom websites, phishing, phishing scams, pickpockets, pic sharing, piers morgan, Pin scams, pinterest scam, Playstation, Ponzi scam, pop ups, posting inappropriate content, posting videos online, potential employers, predictions, privacy, Privacy Awareness Week, privacy setting, privacy settings, proactive identity protection, proactive identity surveillance, Products, Protect all devices, protect devices, protect digital assets, protect teens, provide live access to fraud resolution agents, Pune Police, qr code, QR codes, Rebecca Black, Rep Weiner, research, resolutions, responsible mail, restore credit and personal identity, ring tones, risk of personal information loss, risks of online shopping, risky, Robert Siciliano, roberts siciliano, rogue anti-virus software, rogue applications, romance scams, Russia, safe email tips, safe online shopping, safe password tips, Safe search, safe searching, Safe surf, safe surfing, safe transactions, scam, scammers, scams, scareware, schools, screensavers, sear, search, secure container, secure devices, secure new devices, secure smartphone, secure wi fi, security, security breaches, security landscape, Security Seals, security software, self-defence, sensitive data, sensitive documents, settings, sexting, shopping scams, shortened URLs, simple safety tips, SiteAdvisor, site advisor, smartphone, smartphones, smartphone safety, smartphone security, smart phone threats, smishing, SMS Lingo, sniffing tools, social engineering, social media, social media online scams, social media passwords, social media threats, social networking, social networking best practices, social networking scams, social networking sites, social networking sites security, social networks, Social Security, Social Security Card, social security number, Social Security number fraud, social security number theft, Social Security number thefts, software, Sony, spam, spam mail, Spams, Spellstar, Spyware, SSN fraud, st. patricks day, stay safe from phishing, Steve Jobs, stolen cards, stolen mail, stolen medical card, stolen passwords, stolen Social Security number thefts, student loan applications, Suites, summer activities, Summer holidays, summer vacation, support services, surfing, suspicious messages, swine flu, Symbian, tablets, tablet security, taxes, tax filing tips, taxpayer warning, Tax Preparer Scams, tax returns, tax scams, tax season reminder, teacher abuse over the internet, tech gifts, technical support, teen hate video, teens, teens online safety, teens posting video, text message, text messaging, Threats, threats on women's day, Tips, tips and tricks, tips to mobile security, toolkit scam, travel related online scams, travel risk, travel security, trending topics, trojans, trusted websites and web merchants, Trustmark Security, tweens, tweet, Tweets, twitter, Twitter celebrities, Twitter online security, twitter spam; phishing; twitter scam, type in website address incorrectly, types of phishing, typing in incorrect URLs, typos, typosquatting, unauthorized credit card transactions, unique password, unlimited technical support, unprotected PCs, unsecured unprotected wireless, unsecured unprotected wireless security risks, unsecured wireless, Unsecure websites, unsubscribe, UPS scam, UPS scams, URL hijacking, URL shortening services, USB drives, use of cookies advertising personal security, use of Social Security number (SSN) as national ID, US ESTA Fee Scam, US passport, US Visa Waiver Program scam, valentine scams, valentines day scams; romance scams; email spam, valentines day scams; romance scams; valentine threats, verify website's legitimacy, video game, violent video games, virus, Viruses, Virus protection, wave secure, Web 2.0, web mobs, web protection, web searches, web security, web sites, welfare fraud, wells fargo, what to do when your wallet is lost missing or stolen, white hat hackers, Wi-Fi WEP WAP protection breach, wifi, Wii, windows, Windows 7, work with victim restore identity, Worms, wrong transaction scam emails, www.counteridentitytheft.com, Xbox, xmas, youth, youtube, you tube videos, zombie computers, zombies, • Facebook etiquette, • Most dangerous celebrity, • Parental control
Phishing For Twitter Credentials
|
|
Thursday, February 25, 2010 at 2:22pm by
Archive
Cyberscammers are going after login credentials for Twitter in a big way. At least, that’s if my own Twitter friends are any indication for trending.
In the last week, two of the people I follow on Twitter and who follow me back had their accounts hijacked and abused to send out spam and malicious links via direct message, Twitter’s system for sending private messages to friends who use the service.
Twitter phishing message.
The scams are very similar to what you might see in an instant message or in an e-mail. A message arrives from a friend saying: “haha. This you????” or “Lol. this you??” followed by a link. This is a straightforward phishing scam. The link takes the target to a Web site that looks like a Twitter sign in page, but is not. If you look at the URL you see that it is hosted elsewhere and the actual Twitter looks slightly different as well.
Fake Twitter login page.
Recognizing a fake login page can be hard, especially if you’re using a mobile device to tweet. So keep in mind to think twice whenever you’re asked to type in credentials, especially after you just clicked on a link and didn’t follow your bookmark or typed in www.twitter.com yourself.
We regularly see scams that dupe people into giving up their credentials for online services by presenting a fake login page. These fake login pages are designed to look just like a legitimate login page for a service like Twitter, Facebook, Yahoo. Traditionally cybercriminals have gone after credentials for online payment, banking and auction sites.
The scammers use credentials for social networking sites to spam all the victim’s contacts. This increasingly happens on Facebook and Twitter. Users should use phishing protection like the technology in McAfee’s security suites and McAfee SiteAdvisor in addition to practicing good Internet safety habits like double checking where links take you to and not typing in a user name and password after following a link in an e-mail, instant message or Twitter direct message.
If it was just your account that got phished/hacked:
1. Change your password immediately
2. Change the password on any service where you used the same password
3. Change the password on any service that uses Twitter like Twitterfeed
4. Notify your contacts what happened and apologize (after all, you were just a victim yourself)
(Hat tip to McAfee Labs colleagues Toralv Dirro and Dave Marcus for their help in compiling this blog posting.)
|
|
Tags: Consumer, Cybercrime, facebook, malware, phishing, twitter
Submit your own comments / message for this post