If you have a Twitter account then you have likely gotten and DM that is trying to phish your account. Right now there is one main phishing scam that seems to being plaguing most people on Twitter and is wearing a number of different faces. What has been making this scam so successful is that it is appealing to peoples sense of personal privacy and curiosity.

Have you received one of these:

Is this you in this blog? …http://tiny.ul/847IN6

There is a really bad picture of you in this blog… http://tiny.ul/847IN6

There is a really bad video of you… http://tiny.ul/847IN6

Why did you say that about me in that blog?…http://tiny.ul/847IN6

Why did you post that bad photo of me?…http://tiny.ul/847IN6

Someone said this really bad thing about you…http://tiny.ul/847IN6

So you get the idea. The content of the DM is designed to make you curious or to make you feel as though someone might be threatening your online privacy. For many people their need to protect their online reputation overrides the need to be cautious of unfamiliar links.

When you click the link it takes you to a site that looks like your Twitter login. When you enter your information you have just given your login and password to the hackers and then they send out that same DM to every person you follow.

Because they are sending it to all your followers the chance that they will click the link is better, because it is coming from a trusted source…you.  Though currently they are only sending out DMs, if they have access to your account they could also use it to post tweets. Those tweets could contain links with viruses, or send them to spam sites, or just be generally inappropriate.

If you do click the link, change your password immediately and post a tweet that tells your followers that you got phished and to ignore any DMs.

Play it on the safe side, don’t click any links you don’t know.