BEST OF THE WEB

New Phishing Campaign Target Verified Twitter Accounts

Verified Twitter accounts are now being targeted via phishing emails by attackers pretending to be from Twitter’s verified account platform.

The phishing email notifies the recipient of a problem with their verified account. Recipients are then asked to click on “Check Notifications” to learn more about what is wrong.

The phishing emails warned recipients that ignoring the message could lead to their account being blocked.

If you click on the “Check notifications” button, you will be taken to a page where you will be asked to enter your login details. The page prompts victims to enter their credentials twice as a means of verifying the authenticity of the information.

After entering the information, the phishing kit performs a password reset on the victims’ accounts using the e-mail address entered, and the phishing page asks the target to enter a login verification code, which the threat actors will use to complete the password reset process.

After gaining access to a verified account, the attackers use it to spread a variety of scams among their followers.

IT World Canada Staff
IT World Canada Staffhttp://www.itworldcanada.com/
The online resource for Canadian Information Technology professionals.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

ITW in your inbox

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

More Best of The Web