FBI: Cuba ransomware breached 49 US critical infrastructure orgs
Researchers discover 14 new data-stealing web browser attacks
Microsoft Edge now bashes Google Chrome when you download it
Russian internet watchdog announces ban of six more VPN products
Convincing Microsoft phishing uses fake Office 365 spam alerts
Learn how to develop Android apps with 3 in-depth courses for $13
New Twitter phishing campaign targets verified accounts
Malicious KMSPico installers steal your cryptocurrency wallets
Qualys BrowserCheck
Junkware Removal Tool
How to remove the PBlock+ adware browser extension
Remove the Toksearches.xyz Search Redirect
Remove the Smashapps.net Search Redirect
Remove the Smashappsearch.com Search Redirect
Remove Security Tool and SecurityTool (Uninstall Guide)
How to remove Antivirus 2009 (Uninstall Instructions)
How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo
How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller
Locky Ransomware Information, Help Guide, and FAQ
CryptoLocker Ransomware Information Guide and FAQ
CryptorBit and HowDecrypt Information Guide and FAQ
CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ
How to make the Start menu full screen in Windows 10
How to install the Microsoft Visual C++ 2015 Runtime
How to open an elevated PowerShell Admin prompt in Windows 10
How to Translate a Web Page in Google Chrome
How to start Windows in Safe Mode
How to remove a Trojan, Virus, Worm, or other Malware
How to show hidden files in Windows 7
How to see hidden files in Windows
IT Certification Courses
Gear + Gadgets
A new phishing campaign has been targeting verified Twitter accounts, as seen by BleepingComputer.
Verified accounts on Twitter refer to those possessing a blue badge with a checkmark. These accounts typically represent notable influencers, prominent celebrities, politicians, journalists, activists, as well as government and private organizations.
The phishing campaign follows Twitter’s recent removal of the checkmarks from a number of verified accounts, citing that these were ineligible for the legendary status, and were verified in error.
Over the weekend, BleepingComputer came across a phishing campaign aimed at verified Twitter users.
The phishing email shown below urges the Twitter user to “update” their details so as to not risk losing their verified status. Note, the email successfully made it past Gmail’s spam filters:
These emails are being sent at a time when Twitter is inexplicably removing the “blue tick” verified status from a number of notable accounts, such as that of the English television presenter, producer, and Heart Radio’s national breakfast show host, Jamie Theakston:
So @Twitter has removed my blue tick verification because they can’t be sure I’m me. Fair enough, some days I’m not entirely sure myself…
The Twitter account of Bloxy News with its 556,000+ followers is yet another example that was presented with a generic message as the reason behind revoked verification status.
Unsurprisingly, Twitter’s ongoing takedown of blue badges has ruffled many feathers on Twitterverse as accounts endorsed with the blue badge are often perceived as distinguished, notable, and expected to lead by example—at least that’s what Twitter tells you after verifying you:
A CEO left Twitter and now all of sudden ppl getting they verification badges snatched up??? Like WTF! pic.twitter.com/iW0Cr8sARq
Some took notice that the timing of Twitter’s en-masse blue badge takedown coincides with changes in the executive leadership—after former Twitter CEO Jack Dorsey resigned and handed on the torch to CTO Parag Agrawal.
The phishing email discovered by BleepingComputer is sent to verified users, many of whom may choose to list an email address in their bio for business reasons.
At least in my case, the phishing message arrived at the email address listed in my public Twitter bio rather than the one associated with my Twitter account:
The phishing message first entices the user to tap the “Update here” button.
The button links to https://www.cleancredit[.]in/wp-content/uploads/2021/12/index.html which further redirects the user to a page living at: https://dublock[.]com/dublock/twitter/
It appears both of these websites have been compromised and being abused by the attackers to host phishing pages:
After entering Twitter credentials, that the form poorly validates, the user is prompted to also provide the two-factor authentication code sent to them:
After gathering the user’s Twitter username, password, and two-factor authentication code, the phishing page redirects the user to the Twitter homepage.
Twitter users, verified or not, should be wary of such phishing emails and refrain from opening any links or attachments within. 
Phishing actors start exploiting the Omicron COVID-19 variant
Twitter removes 3,400 accounts used in govt propaganda campaigns
Emotet now spreads via fake Adobe Windows App Installer packages
State-backed hackers increasingly use RTF injection for phishing
Stealthy WIRTE hackers target governments in the Middle East
Not a member yet? Register Now
FBI: Cuba ransomware breached 49 US critical infrastructure orgs
Microsoft reverses Windows 11’s annoying default browser setting changes
To receive periodic updates and news from BleepingComputer, please use the form below.
Terms of Use Privacy PolicyEthics Statement
Copyright @ 2003 – 2021 Bleeping Computer® LLC – All Rights Reserved
Not a member yet? Register Now
Read our posting guidelinese to learn what content is prohibited.


You May Also Like

CISA orders federal agencies to fix hundreds of exploited security flaws

CISA orders federal agencies to fix hundreds of exploited security flawsUS sanctions…

Microsoft patches Excel zero-day used in attacks, asks Mac users to wait

HPE says hackers breached Aruba Central using stolen access keyFBI warns of…

Kali Linux 2021.4 released with 9 new tools, further Apple M1 support

New zero-day exploit for Log4j Java library is an enterprise nightmareALPHV BlackCat…

Phishing emails deliver spooky zombie-themed MirCop ransomware

CISA orders federal agencies to fix hundreds of exploited security flawsUS sanctions…