Twitter hit with 'This You???' phishing attack

[javajolt]

Twitter followers should be extra-careful about clicking on links in tweets today.   A widespread phishing attack is hitting the popular social networking service, says Graham Cluley, an expert at security firm Sophos.

The phishing tweets contain the message "This you???" followed by a URL.  Cluley explains:

"If you click on the link you are taken to a fake Twitter login page, where hackers are just waiting for you to hand over your credentials. In fact, they can automatically post the phishing message from your account as soon as you hand over your details.

If you have received a message like this from one of your friends it is likely that their account has been compromised by cybercriminals."

Sophos has posted this video showing how the attack works.  And remember -- when in doubt, don't click.

This you? Twitter phishing attack demonstrated by Sophos