How diet spammers hijacked Twitter accounts

One domain used in the Twitter diet spam campaign turned out to be interesting. Below you can see some tweets pointing to womenshealth.com-c.pw

womenshealth-com-pw-may13I used Google search cache:womenshealth.com-c.pw and the result was quite interesting. Page redirected to http://twitter.com-c.pw/ (currently the account is suspended) – a phishing site that may have been used to compromise user accounts.

twitter-com-c-pw-cache

Further reading: Gone Phishing (Twitter blog post from 2009) and related Twitter Help Center article. Phishing is not the only way to hijack accounts, but it can be very effective.

I also found one possible Facebook phishing site: fb-hn.es.vu.  Links to this and similar sites are being spread out on Twitter.

possible-fb-phishing

Did you visit a possible phishing site and got hacked? You can post a comment (anonymously) and tell your story. I believe it is important to share information about these phishing sites and possible other tricks used to hack your account.

About these ads
Tagged , ,

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Follow

Get every new post delivered to your Inbox.

%d bloggers like this: