The latest phishing attack is striking Twitter users by sending them messages saying that they’re fat.
Well, at least that’s how some people will interpret the message that’s being sent via DM (direct message) from compromised accounts:
you look like you lost weight in this video.. [LINK]
If you’re curious, you might click on the link which will take you to what appears to be the standard Twitter login page.
Hang on. Let’s take a closer look at the URL to see if this is really the Twitter login page.
Hmm.. If your brain is running on autopilot, or if you’re simply seeing red at the suggestion from your friend’s message that you’re fat, then you might enter your Twitter username and password into the login form without thinking (after all, you want to see that video – right?)
And if you do enter your details, you’ve been phished.
Let’s hope that you aren’t one of the many people who use the same password on other websites on…
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.