There are numerous reports of a new Twitter worm that steals your log-in information and spreads its evil cause. The worm comes in the form of a direct message from someone you may know, and maybe even trust.
If you get a direct message saying something along the lines of “rofl this you on here? http://videos.twitter.secure-logins01.com,” don’t click it. The message will take you to a log-in page that looks like Twitter’s log-in page, but it is of course a phishing scam, where your info is jacked and your account becomes the next participant in spreading the worm.
Unsurprisingly, this issue has not been addressed by Twitter on their blogs, just as that huge exploit that was discovered last month wasn’t. Twitter should probably do a better job of communicating such problems to users before more people fall victim. Mashable notes that they did contact the company about the issue, and they are aware of it, and “on the case.”
Users who encounter the worm are encouraged to change their passwords and contact Twitter.
Security issues continue to plague not only Twitter, but social media in general. According to a study from Russell Herder and Ethos Business Law, time on social networking sites has increased by 73% in the past year. Another study recently released by AVG and CMO Council found that social network uses are more vulnerable to security risks than non-users.
