Today [25-May-2009], I saw an unauthorized posting from my Twitter account. Seems like Twitter still has some serious security issues to be addressed even after those infamous Twitter Worms/Attacks (check out links at the end of the post). [UPDATE : update from Twitter see @ end of the post. Seems like this was more of a phishing scam from some 3rd party appl]
Unauthorized posting from my Twitter account:
“Hi Martha! How are you? I have lost 12 pounds in just two weeks. It only costs 5. Check it out here: http://is.gd/Do2L”
I then thought of checking if it was just my Twitter account or more, so I searched “Hi Martha 12 pounds” on Twitter search and as expected I saw that I was not alone. Quite a lot of Twitter accounts have been compromised (check the screen shot below). Fortunately, Twitter does not has any of my personal details except the email-ids. Imagine if we had some details like credit card, or social security etc on Twitter! Twitter needs to better get their security enhanced before they are into some serious trouble.
This is not for the first time that I have heard about people’s accounts being hacked on Twitter. Check out few of the post related to hacks on Twitter accounts on TechCrunch:
UPDATE from Twitter:
Due to concern that your account may have been compromised in a phishing attack that took place off-Twitter, your password was reset. Please create a new password.
Please click on the link below our copy and paste the URL into your browser:
[URL removed for security reasons]
This will reset your password.
Another UPDATE from Twitter:
We are currently pushing a password reset on accounts we believe may have been caught in a phishing scam. Please exercise your best judgment when thinking about releasing your username and password to third parties.
Popularity: 1% [?]