Hackers and cybercriminals are clever and creative. There is a ruse currently on Twitter than show what good social scientists hackers are. It plays upon people’s curiosity and vanity.
The scam begins with a note from someone familiar on the Twitter feed. This is someone with whom there is an internet relationship. You have been following this person for some time on Twitter and perhaps on other social networking sites, such as Facebook. This familiar person send a note that says:
“I saw a real bad blog about you, you seen this? [with a link included]”
The link leads to problems. The message arouses interest and the link is clicked. The link is to a page that looks almost identical to a Twitter log in page. Filling in the log in data is all that the hacker wants and needs. On this page, which is a clever spoof of the actual Twitter log in site, entering the personal user name and password hands over the Twitter identity to the some unscrupulous people. Then the Twitter account has been compromised.
How to identify that the Twitter log in page as fraudulent is through the Uniform Resource Locator [URL]. The site address of this phony site is not Twitter. However, in people’s rush to see the text content and what has been said about them, the URL / address is not checked. The hackers are counting on people missing that detail. Then the hackers have access to your Twitter account and all the ‘good-will’ and friendships that you have created. That gives them an opportunity to increase their criminal activities. This may include spreading spyware, malware, trojans, root kits and other such internet trash. That may lead to spam, identity theft or some other criminal activity.
If you have fallen for this scam, it is essential to change the Twitter password. If this name/password combination is an identifier to other sites, then there are more problems. Those passwords must be changed to guard the online identity. If, for example, that name/[password combination opens an account on some financial site like Paypal, then changing the personal security information is absolutely imperative.
Your friend who sent you the Twitter message has had his/her account compromised. Cybercriminals are using their internet reputation and your virtual friendship for exploitive purposes. Let your online friend know that his/her Twitter account has been compromised.
And, really, there is not a web page writing bad things about you. There are just hackers and criminals who want to catch you in a hurried, inattentive moment when you will give away your personal, private information.