Anatomy of a Twitter malware scam

When a funky Direct Message showed up in my inbox, I had to investigate -- and narrowly missed getting infected with malware. (Kids, don't try this at home.)


By now, all of this is moot. The links to these sites are all dead; Twitterwink now just shows a blank page for 2x4. Either these guys got caught or, more likely, they moved on to new scams and new domains.

I warned my friend about the Twitter hijacking and, hopefully, he changed his password. But this is a particularly insidious scam because it comes via Twitter Direct Messages, which are likely to be more trusted by more people. And as I also got similar scam DMs via another Twitter handle I use, it’s safe to say this is hardly an isolated incident.

Today’s lesson? Always be wary of anything that looks a bit funky. Don’t automatically trust Twitter DMs, especially ones with links in them. Look closely at URLs whenever you do decide to click. And, above all, don’t be stupid. Unlike me.


Got a question about social media? TY4NS blogger Dan Tynan may have the answer (and if not, he’ll make something up). Visit his snarky, occasionally NSFW blog eSarcasm or follow him on Twitter: @tynanwrites. For the latest IT news, analysis and how-to’s, follow ITworld on Twitter and Facebook.

Now read this:

Facebook botnets have gone wild

Inside a Facebook botnet

Join us:






IT ManagementWhite Papers & Webcasts

Webcast On Demand

Data Breaches - Don't Be a Headline

Sponsor: Absolute Software Corporation

White Paper

PCI 3.0 Compliance

See more White Papers | Webcasts

Answers - Powered by ITworld

Ask a Question