A Advance Tweet claims it can help Twitter users get their accounts guaranteed, but in reality, it’s just a scam.
Promoted Tweets are a way by which Twitter buyers can y for a Tweet to reach a wide audience and generate engagement with their up to date followers. As such, they are an excellent tool for anyone looking to advertise something.
Unfortunately, Advance Tweets are also useful for scammers looking to steal users’ Peep credentials.
Christopher Boyd of Malwarebytes came across one such scammy Upgraded Tweet on 28 October.
In three days, at least 812 being clicked on that tweet. 644 users did so on their iPhones, with 534 of those based in the Merged States.
Sure enough, the shortened URL leads to a phishing ge where it advertises the power to help Twitter users get their accounts verified.
Here’s what the phishing landing-place ge says, as quoted by Malwarebytes:
“Welcome to Twitter Verification
“Hundreds of millions of human being use Twitter to discover what’s happening in the world. Twitter can help you braze with them and achieve meaningful results.
“Being verified is myriad than a cool badge on your profile, it signifies authenticity and ensures the community that you are an formal acount.” [SIC]
The scam then takes users through a series of sheets where it asks for their personal information including their username, open sesame, and email address. It does all of this under the guise of two ges that are preserved by SSL.
When the ruse asks for users’ yment card details, putting, it drops the act and includes insecure content. Hopefully, some users wishes notice that lack of protection and won’t enter in their financial message.
Considering the scam is still active as of this writing, it’s more leading than ever for users to learn how they can spot scams on Chirruping like the attack cam ign targeting customers of UK banks.
Users should be uniquely on the lookout for content that asks for their login credentials or monetary information. As Boyd explains
“Whether links you see on Twitter are served up by posslq person of the opposite sex sharing living quarters, strangers, or even sponsored content placed there via Twitter itself, not till hell freezes over take them for granted – the moment you see a site asking for login credentials and / or yment info, think very carefully about your next move. ‘Count on, but verify’ has never seemed quite so relevant…”
Anyone who’s fallen casualty to this scam should change their Twitter ssword promptly, implement two-step verification (2SV) on their account, and carefully watch their yment membership card statements for any indication of fraud.