Security experts warn of possible ID theft scam on Twitter
Wednesday, May 13, 2009
A social networking game making the rounds on Twitter has been flagged by security experts as a possible threat to users.
The Twitter "porn name game" may be a ruse to get people to unintentionally reveal their security questions for remembering their passwords. Web security pros said this could leave users susceptible to identity theft or fraud.
A security blogger for PC World pointed out Tuesday that the questions users are supposed to answer to come up with their porn name are actually common security questions, such as "what is your pet's name" and "what is your mother's maiden name."
Security firms have been blasting the warning out since yesterday and Twitter has warned users not to post their personal information - in connection with the #twitterpornnames tag, which makes user posts easily searchable, or anywhere on the site.
This kind of social engineering trick is becoming increasingly common on social networking sites.
Spammers have conned users of Facebook with phishing attacks premised on Wall posts proclaiming that scandalous pictures of the user have surfaced on Facebook and directing users to malicious sites.
Spammers have also sent Twitter messages to users that can contain malicious links. The use of link shortners like TinyURL to fit a link into Twitter's 140 character limit has been used to mask malicious links, security experts said.
Related News:
UK cops arrest two in Zbot Trojan case - 11.19.2009
The British Metropolitan Police took two suspected cyber criminals into custody earlier this month in connection with an investigation into the Zbot banking Trojan.
Facebook shakes up privacy policy in response to criticism - 11.19.2009
After a week-long comment period in which 7,000 Facebook users voiced their opinions, the giant social media network announced that it would overhaul and simplify its privacy policy.
Domain registrar VeriSign will receive "major security update" by 2011 - 11.19.2009
A well-known security vulnerability in the way .com and .net websites process DNS values - the way alphanumeric website names are translated into numeric web addresses - will be fixed, but not until 2011, according to a report from tech news website ZDNet.
Malware attack targeting fans of Twilight series - 11.18.2009
As with many recent hot news trends, the upcoming release of the second movie based on Stephenie Meyer's Twilight books has attracted the attention not just of the vampire wannabes, but of actual cyber criminals as well.
Giant black-hat SEO campaign funnels victims to scareware sites - 11.18.2009
Security researchers say that cyber criminals have conducted a large-scale campaign to influence Google results, pushing malware-spreading sites higher on the list and dropping legitimate results to the bottom.
|
