Double Threat Behind “Heh U Didn’t See Them Tapping U” Twitter DM

Evil Twitter BirdCybercriminals are doing their best to get you one way or another if you click on the link attached to DMs asking if you noticed you were being videotaped.

Don’t be fooled by the fact that the messages come from one of your followers, or that the link appears to go to a Facebook page. It’s only because the first phase of the scam uses a malicious Facebook app to steal Twitter login details.

It all begins with a direct message that goes a little something like this…

heh u didnt see them tapping u
hxxp://facebook.com/241455879316971?eby_creepy

Clicking on the link will take you to an evil Facebook app that requests your Twitter username and password before revealing the alleged video of you.

Phishing Page Steals Twitter Logins

The fun doesn’t stop there, though. Once you’ve foolishly handed over the keys to your Twitter account, you will be redirected to a third-party site dressed up as a Facebook page with an embedded video that you can’t watch because apparently you need to download an update for YouTube Player.

Fake Facebook Video Page Pushes Malware

Of course, that “update” (FlasshPlayerV11.137.18.exe) is complete bogus and is actually malware that only 6/44 antivirus programs can detect, according to VirusTotal.

Oh, and there’s no video.  Only thing going on here is Twitter account theft and malware infections, move along…

Did You Get This DM?

If you received this message on Twitter, it’s highly recommended that you:

  • Do NOT click the link, provide your Twitter login OR download ‘YouTube Player’ updates – it will not end well if you do.
  • Report the DM to Twitter.
  • Let the sender know that they have fallen for a scam and urge them to not only change their Twitter account password, but scan their computer for malware. (Check the VirusTotal report above to see what antivirus can detect the infection.)
  • Delete the DM immediately.

Outside of that, be sure to give your friends & family a head’s up about this scam.

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

This entry was posted in Computer Security, internet scam, malware, phishing, scam, social engineering, spam, twitter and tagged , , , .
Follow any comments here with the RSS feed for this post. Post a comment or leave a trackback: Trackback URL.
  • Pingback: Twitter Phishing Scam: "Did you see this pic of you?" | Hyphenet IT Security Blog

© 2014 Hyphenet, Inc.
1761 Hotel Circle S, Suite 350, San Diego, CA 92108

All rights reserved. Reproduction in whole or in part in any form or medium without express written permission is prohibited.

Hyphenet IT Security Blog located at 1761 Hotel Circle South, Suite 350 , San Diego, CA . Reviewed by 91 customers rated: 3.8 / 5