Last week, we alerted users to be on the lookout for direct messages on Twitter that read “lol ur famous now.” Now, experts are warning of other similar messages used in the same campaign: “your in this [link] Lol” and “you even see him taping u [Link] thats awful.”
Internauts who click on the links are taken to a fake Facebook video page that urges them to install a Flash Player update in order to see the content.
The so-called Flash Player - FlashPlayerV10.1.57.108.exe – is actually a nasty Trojan identified by Sophos as Troj/Mdrop-EML.
For the time being, it’s still unknown how cybercriminals have been able to take over so many Twitter accounts, but we’re most likely dealing with a phishing scam or a rogue application.
Users who have been faced with this scheme are advised to change their passwords and revoke suspicious-looking apps from Twitter.