A dangerous phishing exploit is currently making its way around Twitter, so be careful which links you choose to click. Tech blogger Chris Pirillo describes the exploit in “Phishing Scam Spreading on Twitter”.
Potential victims of the phishing scam receive a direct message that reads:
hey! check out this funny blog about you… jannawalitax . blogspot . com
When you click on the link in that direct message, you are taken to a fake Twitter login page that asks for your password. The site is actually hosted on twitter.access-logins.com which is a site with Chinese origins, not the official Twitter servers. Do not enter your password into this page. If you have already done so, change your Twitter password.
Facebook users may also be the targets of this phishing scam — I just manually visited the URL to the phishing site and it loaded a fake Facebook login page.
Link via @Veronica, @chrispirillo and @loic.
Update: Twitter staff have placed a warning notice at the top of each Twitter page linking to “Don’t Click That Link!” on the Twitter Status blog.
