Search Content

WhitePapers


Sales Force Automation Comparison Guide

Businesses of all sizes can benefit by automating all aspects of their sales processes with an SFA (Sales Force Automation) solution. But due to the sheer number of features that most SFA solutions...Read More


Which CMS Is Right For Me?

If you're wondering which CMS is the right one for your organization, this comprehensive guide will take you through the various options available, detailing the pros and cons of each. Download...Read More


Oracle Magazine

Oracle Magazine contains technology strategy articles, sample code, tips, Oracle and partner news, how to articles for developers and DBAs, and more. Oracle (NASDAQ: ORCL) is the world's largest...Read More


How to Buy a Phone System

Considering a new phone system for your business? The Phone System Buyer's Guide from VoIP-News provides you with all of the information you need to make a more informed decision. The Guide helps you...Read More




View All Whitepapers

Phishing Scam Strikes in Twitter Direct Messages

A new phishing attempt has been circulating tonight that’s being distributed through direct messages. If you receive a direct message like this, delete it immediately.

Screenshot of Phishing Direct Message

The direct message will include the following text and link:

hey! check out this funny blog about you… jannawalitax.blogspot.com

As a measure of courtesy, you might want to inform the user who sent it to you that they’ve fallen victim. You can send them a reply or a direct message, whichever one you feel is more effective.

Protect Yourself

The link will take you to a site that looks very much like Twitter - but it is not. It’s a third-party site (twitter.access-logins.com) that just wants your password so it can spread further.

Access-Logins Twitter Phishing Site

It’s important to note that you should really treat direct messages like you treat email. As always, we advise practicing caution when using your Twitter credentials. If it looks suspicious, it probably is.

Oops! I clicked on the link, now what?!

If you did log in at the phishing site, change your password immediately. Without a valid password, there’s nothing the phishers can do on your behalf. Unfortunately, there’s not much else you can do right now. If we hear about an official point of contact, we’ll list it here.

Twitter’s On It

Biz Stone tweeted earlier that the operations team at Twitter is working on the issue, so expect to see a resolution fairly quickly. There’s also a post on the issue on the Twitter Status blog. We just wanted everyone to be aware of the issue before it affects you. We, and many others, have sent out warnings through Twitter - please do your part and retweet or redistribute the link to this article.

Update: It looks like the phishers are also hitting Facebook, as pointed out by @jamescarr (via @hillabean). Beware of anything linking to access-logins.com. Rob also pointed out that Firefox is reporting anything at that domain as web forgery.

Update 2: Twitter has a great post on their blog about what phishing is and what you can do to avoid phishing scams.


Related Salesforce Consulting Articles

An Application Marketplace Architecture


Recently I've been thinking about the increasing attention being paid to application marketplaces. My current conclusion is that there is a strong linkage between application marketplaces and the 4 forces of long tail software I described in my...

Read more about An Application Marketplace Architecture ...

Living the Dream - Salesforce, Google and SaaS


We at Appirio have lots of experience at big technology companies (SAP, webMethods, Borland) and classic enterprise software startups. We run Appirio differently from what we saw at these companies. We not only run our business using software...

Read more about Living the Dream - Salesforce, Google and SaaS...