Don't Click that Twitter Direct Message Link

By Peter Bernstein August 31, 2012

Please consider the following as a public service message. I have my fingers crossed that the third time is the charm. What I am referring to is the fact for the third time in the last twenty-four hours I have had to change my Twitter password and revoke various settings in order to stop the havoc caused by malware. 

If you are getting messages like “what are you doing in this video?” with a link that you are asked to click, or some variant on “look who is saying harmful things about you,” again followed by a link, do not click the link. You are toast if you do.

In other words, clicker beware of something like the below.



If you click every one of your followers is going to get one of these messages from you, and thanks to the bad guys you will be flooded back in kind. 

Twitter’s fix is to do as I did as stated above, i.e., reset your password and revoke the privileges of any app that links to Twitter, which can be done in the APPS part of your settings.

The culprit according the experts is called the Blackhole Expoit Kit. Something everyone says is a nasty piece of business that is a root kit with legs to exploit easy targets like Twitter, Facebook, Google+ etc. What I can report is that I ran anti-malware and anti-virus software designed to “root out” the Blackhole and came up empty. 

My suspicion is the original bad boy has been perfected. Not only did I have the aforementioned nightmare but in attempting to change my password I was taken to a page that spoofed the Twitter change your password capabilities and thereby exacerbated the problem by giving the malware my current Twitter password along with a few other favorites when that did not work. Let’s just say for cautions I have changes all of my passwords on things I regularly use.

I also fear that this is a time bomb waiting to go off again since this is not the first time I have experienced the problem.   My issue is that my @berniebernstein Twitter account is one I use solely for business. The good news is I have lots of followers. The bad news is they are not happy campers. In fact, the reason I have my toes crossed as well as my fingers is that I do not wish to change my name as well as my password because it would mean spending time replicating everything in the account. Yikes!

I have contacted Twitter @support to see what they can do for me. I did get a helpful note from them at 2:00AM yesterday morning that my account was in trouble and I needed a password reset and was directed to the appropriate page to do so. 

The bottom line is: don’t click what you don’t like, even if it is from somebody you do. I will keep you posted on what the support folks at Twitter recommend.




Edited by Rachel Ramsey
SHARE THIS ARTICLE
Related Articles

Is The Lenovo Yoga Book The Most Innovative Windows LapLet

By: Rob Enderle    12/9/2016

Sometimes you run into a product that redefines a segment. In cars it was things like the 240Z and Miata, in Smartphones the BlackBerry and then the i…

Read More

From Forecast to Fact: The Top Security Threats and Targets of 2016

By: Special Guest    12/9/2016

In early 2016, we shared our predictions of key security threats likely to hit us this year. As predicted, cyber espionage, ransomware, insider threat…

Read More

Pebble Drops Race, Moves to Fitbit

By: Steve Anderson    12/8/2016

Pebble offers confirmation that it's pulling up stakes in the wearable tech race, and moving lock, devs and software to Fitbit.

Read More

SoftBank CEO Cozies Up to Trump

By: Paula Bernier    12/7/2016

SoftBank Group founder and CEO Masayoshi Son, who is also Sprint's chairman, told President-elect Donald Trump he wants to create 50,000 new U.S. jobs…

Read More

Predicting the FCC's Path Forward Under President-Elect Donald Trump

By: Special Guest    12/6/2016

President-elect Donald J. Trump will become the 45th President of the United States of America on January 20, 2017. Many in the tech, media and teleco…

Read More