Don’t be fooled by the fact that the messages come from one of your followers, or that the link appears to go to a Facebook page. It’s only because the first phase of the scam uses a malicious Facebook app to steal Twitter login details.
It all begins with a direct message that goes a little something like this…
heh u didnt see them tapping u
Clicking on the link will take you to an evil Facebook app that requests your Twitter username and password before revealing the alleged video of you.
The fun doesn’t stop there, though. Once you’ve foolishly handed over the keys to your Twitter account, you will be redirected to a third-party site dressed up as a Facebook page with an embedded video that you can’t watch because apparently you need to download an update for YouTube Player.
Of course, that “update” (FlasshPlayerV11.137.18.exe) is complete bogus and is actually malware that only 6/44 antivirus programs can detect, according to VirusTotal.
Oh, and there’s no video. Only thing going on here is Twitter account theft and malware infections, move along…
Did You Get This DM?
If you received this message on Twitter, it’s highly recommended that you:
- Do NOT click the link, provide your Twitter login OR download ‘YouTube Player’ updates – it will not end well if you do.
- Report the DM to Twitter.
- Let the sender know that they have fallen for a scam and urge them to not only change their Twitter account password, but scan their computer for malware. (Check the VirusTotal report above to see what antivirus can detect the infection.)
- Delete the DM immediately.
Outside of that, be sure to give your friends & family a head’s up about this scam.