Softpedia
 
HomepageWindowsGamesDriversMacLinuxScripts buttonMobileHandheldNews

NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>
TRENDING TODAY
Home > News > Security > Spam Reports

June 20th, 2012, 18:40 GMT · By

Compromised Twitter Accounts Used to Promote Fake CNBC Work-at-Home Jobs

SHARE:

Adjust text size:

Shady tweets posted from compromised Twitter accounts
Enlarge picture
A large number of Twitter accounts have been compromised in the past couple of weeks and used to spread links that point to a fake CNBC website which advertises a shady work-at-home job.

According to Naked Security, it’s uncertain how all the accounts have been hijacked, but there may be a connection to the recent LinkedIn incident because the spam campaign began on the exact same day on which the password leak came to light.

The tweets posted from the compromised accounts look something like this:

Hey, Why work for somebody else? [LINK]
best decision I ever made was checking this out. just click on this link [LINK] 
Hey pal, a woman tells CNBC about making money from home! [LINK] 

While they may differ from one situation to the other, they all come with a link that seems to point to a CNBC site. In reality, cnbc is just the subdomain of the com-[redacted].in domain that hosts the scam.

The malicious website is cleverly designed to display a title adapted to the victim’s location based on his/her IP address.

Once the unsuspecting internaut clicks on one of the links from the shady site, he/she is taken to another domain that promotes a multi-level marketing (MLM) scheme.

To make everything more legitimate-looking, McAfee Secure and VeriSign Secured logos are displayed.

Regarding the hijacked accounts, many of them appear to belong to users who haven’t utilized Twitter for a long time. In some cases we’ve seen, the accounts’ rightful owners are still posting, but every once in a while a shady tweet appears on their feed.

If this campaign is not connected to the LinkedIn breach, the spammers could have acquired all those accounts via phishing or with the aid of shady Twitter apps that post messages on the user’s behalf.

In any case, customers of the social media site are advised to check their tweets and if they see any suspicious ones, they should verify the apps that have access to their accounts.

Also, as a precaution, they should change their Twitter passwords.
FILED UNDER:
spam
Twitter hack
scam


1,893 hits
Link to this article · Print article · Send to friend

MUST-READ RELATED ARTICLES:


Researcher Explains Why Scammers Say They Are from Nigeria
Perfect Recipe for 419 Scam: Drama, Helping the Needy, and Scanned Passports
Facebook Pulls the Plug on Shady Account Termination App
Perfectly Forged Verizon Wireless Emails Used in Malicious Campaign
“Free $1,000 Best Buy Giftcard” Scams Served via SMS

READER COMMENTS:



No user comments yet.
Be the first to express your opinion!
Copyright © 2001-2013 Softpedia. Contact/Tip us at

WindowsGamesDriversMacLinuxScriptsMobileHandheldNews

SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   UPDATE YOUR SOFTWARE   |   ROMANIAN FORUM
© 2001 - 2013 Softpedia. All rights reserved.
Softpedia® and the Softpedia® logo are
registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use