Please consider the following as a public service message. I have my fingers crossed that the third time is the charm. What I am referring to is the fact for the third time in the last twenty-four hours I have had to change my Twitter password and revoke various settings in order to stop the havoc caused by malware.
If you are getting messages like “what are you doing in this video?” with a link that you are asked to click, or some variant on “look who is saying harmful things about you,” again followed by a link, do not click the link. You are toast if you do.
In other words, clicker beware of something like the below.
If you click every one of your followers is going to get one of these messages from you, and thanks to the bad guys you will be flooded back in kind.
Twitter’s fix is to do as I did as stated above, i.e., reset your password and revoke the privileges of any app that links to Twitter, which can be done in the APPS part of your settings.
The culprit according the experts is called the Blackhole Expoit Kit. Something everyone says is a nasty piece of business that is a root kit with legs to exploit easy targets like Twitter, Facebook, Google+ etc. What I can report is that I ran anti-malware and anti-virus software designed to “root out” the Blackhole and came up empty.
My suspicion is the original bad boy has been perfected. Not only did I have the aforementioned nightmare but in attempting to change my password I was taken to a page that spoofed the Twitter change your password capabilities and thereby exacerbated the problem by giving the malware my current Twitter password along with a few other favorites when that did not work. Let’s just say for cautions I have changes all of my passwords on things I regularly use.
I also fear that this is a time bomb waiting to go off again since this is not the first time I have experienced the problem. My issue is that my @berniebernstein Twitter account is one I use solely for business. The good news is I have lots of followers. The bad news is they are not happy campers. In fact, the reason I have my toes crossed as well as my fingers is that I do not wish to change my name as well as my password because it would mean spending time replicating everything in the account. Yikes!
I have contacted Twitter @support to see what they can do for me. I did get a helpful note from them at 2:00AM yesterday morning that my account was in trouble and I needed a password reset and was directed to the appropriate page to do so.
The bottom line is: don’t click what you don’t like, even if it is from somebody you do. I will keep you posted on what the support folks at Twitter recommend.
Edited by Rachel Ramsey