Phishing for twits
Page 1 of 2 12 LastLast
Results 1 to 10 of 20

Thread: Phishing for twits

  1. #1
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324

    Exclamation Phishing for twits

    I was curious as to what people thought of the recent use of twitter ranking sites to steal username/passwords of Twitter users (and thus likely get access to email and such).
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  2. #2
    Senior Member
    Join Date
    Dec 2006
    Location
    Myrtle Beach, SC
    Posts
    239
    i dont even know what twitter is, never heard of it. but i will do some research and get back to you

  3. #3
    Banned
    Join Date
    Jan 2008
    Posts
    605
    i dont even know what twitter is, never heard of it.
    My guess is that it deals in mental masterbation.
    I was curious as to what people thought of the recent use of twitter ranking sites to steal username/passwords of Twitter users
    Sounds like a barrel of laughs.

  4. #4
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    It looks like it might just be an attempt to embarrass Twitter and its users?

    http://twitpic.com/lfm9

    and: http://mashable.com/2008/11/12/twitterrank/

    Amazing just how gullible some people can be
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  5. #5
    Senior Member t34b4g5's Avatar
    Join Date
    Sep 2003
    Location
    Australia.
    Posts
    2,391
    Nihil it goes back to the saying.
    "There's an idiot born every 5 Seconds".

  6. #6
    Senior Member VicE$DoS$'s Avatar
    Join Date
    Nov 2002
    Posts
    209
    Sorry! I know this is an older thread.

    I just wanted to ask if anyone sees any benefit in stealing twitter account details? What can be gained?

    Other than the sheer embarrasment and perhaps a small probably negligable bit of reputation damage should it be a 'corporate twitter'

    Thanks!
    I remember when Nihil was ickle. Does that mean I'm old?

  7. #7
    Senior Member JPnyc's Avatar
    Join Date
    Jan 2005
    Posts
    2,734
    Being on it is embarrassing enough, I should think.

  8. #8
    Senior Member
    Join Date
    Feb 2002
    Posts
    500
    Quote Originally Posted by VicE$DoS$ View Post
    Sorry! I know this is an older thread.

    I just wanted to ask if anyone sees any benefit in stealing twitter account details? What can be gained?

    Other than the sheer embarrasment and perhaps a small probably negligable bit of reputation damage should it be a 'corporate twitter'

    Thanks!
    Well for most folks, it can give you access to quite a bit. See, the avarage joe uses the same username/password on every account they have, or its very similar. So by taking control of something unvaluable like twitter, you could indirectly gain access to their bank as well. Of course this would have to be more of a personalized attack, where you would have to know or guess where they have other accounts at.
    Ron Paul: Hope for America
    http://www.ronpaul2008.com/

  9. #9
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    Quote Originally Posted by cross View Post
    Well for most folks, it can give you access to quite a bit. See, the avarage joe uses the same username/password on every account they have, or its very similar. So by taking control of something unvaluable like twitter, you could indirectly gain access to their bank as well. Of course this would have to be more of a personalized attack, where you would have to know or guess where they have other accounts at.
    Right but that one account compromise could mean, since many corporations have employees using twitter, a compromise into the corporation. It is a doorway in. Additionally, since there are some websites that prompt ways to enhance the twitter experience, it may be a way into the environment (albeit that twitter only uses UDP -- at this point) it may still present a way in.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  10. #10
    Senior Member VicE$DoS$'s Avatar
    Join Date
    Nov 2002
    Posts
    209
    Interesting. Never thought about the UDP aspect and the possibility of inbound attacks.

    I think anyone using these Twit ranking and or Twit enhancement sites get everything they deserve!

    ** Goes to quickly un-install Twibble.de from his Blackberry...........:0
    I remember when Nihil was ickle. Does that mean I'm old?

Similar Threads

  1. New way to decipher phishing attacks
    By YoungNobody in forum Security News
    Replies: 0
    Last Post: April 11th, 2006, 04:24 AM
  2. Spear Phishing
    By tonybradley in forum Phishing and Cyber Scams
    Replies: 5
    Last Post: February 6th, 2005, 06:53 PM
  3. Experts: 'Phishing' more sophisticated
    By MrLinus in forum Miscellaneous Security Discussions
    Replies: 15
    Last Post: January 22nd, 2005, 06:52 PM
  4. DIY phishing kits
    By phishphreek in forum Phishing and Cyber Scams
    Replies: 2
    Last Post: August 21st, 2004, 12:17 AM
  5. Phishing Scam Call to Action
    By phishphreek in forum Phishing and Cyber Scams
    Replies: 3
    Last Post: June 17th, 2004, 11:53 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •