Msg#: 3976388 posted 2:48 pm on Aug 22, 2009 (gmt 0)
I don't think there's any way to really stamp these out. People are amazingly gullible, and if they are presented with what looks like a cool app for Twitter, Facebook, etc., they will gladly offer their login credentials.
Perhaps some algorithmic monitoring of account activity might let the services detect hacked accounts more quickly and suspend them while they are investigated. Presumably, hacked accounts are used to start spamming or distributing malware links, a behavioral shift that might be detectable.