Today, one of EHN's reader has contacted us regarding the spam direct message.? The DM contains the following message:
"how did u not seee them tapping u [facebook_Link]"The link provided in the spam message is a legitimate Facebook URL "hxxp://facebook.com/111252232366741?lEpicFailsx".? It redirects to the 'hxxp://apps.facebook.com/111252232366741'.
I was surprised to see the page.? The Twitter phishing page is being loaded inside the facebook app.? It ask users to login in order to watch the video.
If you enter your twitter credentials in the page, you will be handing over your login details to cyber criminals. The hackers will use your login credentials for spreading their phishing attack further by sending DM to your friends.
After further analysis, we have discovered that phishing page is being loaded and data is being sent to 'tweetcatcher[dot]info'. The domain is registered on 27-Sep-2012 under "gaylordjohnson03[dot]gmail.com".
There are more than 35 domains registered with this mail address. All of them are used for phishing attacks. I've listed some domains here:http://pastebin.com/yFsYL2BQ
"all those receiving odd messages - i did not send them do not open link i do not know what it contains" one of the victim tweeted in Twitter.
We recommend users not to click the links provided in these type of DMs.
Source: http://www.ehackingnews.com/2012/10/twitter-phishing-page-inside-facebook-app.html
iOS 6 Yunel Escobar Eye Black Cruel Summer Endeavor mega millions shaun white carolina panthers
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.