PSU AgSci IT eNews

This is the bi-weekly IT newsletter for the College of Ag Sciences, Penn State University

Thursday, March 11, 2010

Tech Spotlight: Twitter Safety

If you use Twitter, here are two issues to bring to your attention.

First, be cautious of Direct Messages (DM) from people you follow.

"Messages asking "This you????" followed by a link are being sent via the system to unsuspecting users. If you click on the link you are taken to a fake Twitter login page, where hackers are just waiting for you to hand over your credentials. In fact, they can automatically post the phishing message from your account as soon as you hand over your details. If you have received a message like this from one of your friends it is likely that their account has been compromised by cybercriminals."

To read more and see a YouTube video for a demonstration of the phishing attack, please visit here:

http://www.sophos.com/blogs/gc/g/2010/02/24/phishing-attack-hits-twitter-users/

Second, this Twitter Help Resources page describes How Twitter Accounts Become Compromised (Did somebody hack me?).

"Accounts may become compromised if you’ve entrusted your username and password to a third-party application, or if your Twitter account is vulnerable due to a weak password, viruses or malware on your computer, or a compromised network

Unexpected updates don't always mean that your account was hacked. Occasionally, a third-party application can have a bug that causes weird things to happen your account. If you see strange behavior, changing your password and revoking connections will stop it, as the application will no longer have access to your account.

It’s best to take action as soon as possible if updates are appearing in your account that you did not intend to have posted or approve. You can find more information about Account Security on the Safe Tweeting help page."

Takeaway Points:

  • Use a strong and UNIQUE password for your Twitter account.
  • If you get a weird link from a follower that you think is a phishing site or a spam site, reach out and suggest they change their password right away. You can also send them to the help page for compromised accounts so they can get more information.
  • Select third-party programs and applications you use with your Twitter accounts very carefully. Learn more here: http://help.twitter.com/forums/26810/entries/76052

Vince Verbeke, IT Specialist

Reactions: 

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)