Welcome to WebmasterWorld Guest from 54.162.141.212

Forum Moderators: not2easy & rumbas

Message Too Old, No Replies

Twitter account hacked

Post to a home make a million scam

     
12:52 pm on Jul 6, 2011 (gmt 0)

WebmasterWorld Senior Member bwnbwn is a WebmasterWorld Top Contributor of All Time 5+ Year Member



Late yesterday I noticed a tweet by me that I didn't do. It was ssomthing like I made 250 yesterday at home with a tiny url going to a get rich at home deal. I know my password wasn't guessed as it is one that can't be. I scanned all my equipment everything fine. So how was this done. I wonder if there was a breach at twitter and a bunch of log info was stolen.

Just a heads up something is going on with twitter. I told our IT manager this AM and he said a person he follows posted the same message yesterday about the same time my account was posted to.
1:03 pm on Jul 6, 2011 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Can you still login to your account? Was the password a unique secure password or a password you used somewhere else?
1:09 pm on Jul 6, 2011 (gmt 0)

WebmasterWorld Senior Member bwnbwn is a WebmasterWorld Top Contributor of All Time 5+ Year Member



Yes I could log into the account. I changed the password as well but my gut feeling is they did it without the password. Just real strange for them to post to my account like I have 50 followers maybe. Take out the trash and I probably have 10 real followers.
1:54 pm on Jul 6, 2011 (gmt 0)

WebmasterWorld Senior Member bwnbwn is a WebmasterWorld Top Contributor of All Time 5+ Year Member



Found the source of the spam. [nakedsecurity.sophos.com...]

The article is an old one but I bet this is were the spam is coming from.
9:51 pm on Jul 6, 2011 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



But how did it post from your account?

Did tweetmeme post it on your behalf, i.e. you gave it permission to access your twitter account?
9:22 am on Jul 7, 2011 (gmt 0)

5+ Year Member



As far as I understand, the linked article isn't claiming the tweetmeme caused the original tweets to be sent. It's saying that because so many accounts were making these tweets, it was picked up by tweetmeme giving it further exposure.
8:04 pm on Jul 7, 2011 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



That's the way I read it. Either the account was hacked, or a third party app / site with access to the account posted it.
12:12 am on Jul 8, 2011 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



+1 on the apps suggestion. Go thru your Twitter profile apps list and remove all unessential ones.
3:26 am on Jul 8, 2011 (gmt 0)

WebmasterWorld Senior Member bwnbwn is a WebmasterWorld Top Contributor of All Time 5+ Year Member



Been reading it over again and as Status_203 said this probably isn't the hack. Been so busy I just scanned it but took some time to go over it. I am now not sure how it happened. I know the pass was not one that a program could get. All my passwords are were this won't happen. If it was a hack from my pass then why not change the pass and tweet more. Something just doesn't add up. This is my first hack in 12 years. I am the only one with the pass and user name I don't store my passwords, so I have no idea how it happened. I do know there have been others tweeting the same message. Intresting to see if more information comes out in the future on this. I really would like to know.
Hoople thanks I do have one account connected to twitter ratepoint. Hmm let me look into that as a possibility.
1:30 pm on Jul 8, 2011 (gmt 0)

WebmasterWorld Senior Member bwnbwn is a WebmasterWorld Top Contributor of All Time 5+ Year Member



Looked for a connection with ratepoint app and just can't find anything to connect.
3:40 pm on Jul 8, 2011 (gmt 0)

WebmasterWorld Senior Member pageoneresults is a WebmasterWorld Top Contributor of All Time 10+ Year Member



My Account Has Been Compromised
[Support.Twitter.com...]

My first and only guess would be the third party connection. If you are that sure about your password, that leaves one other option, the third party connection.

Unexpected updates don't always mean that your account was hacked. Occasionally, a third-party application can have a bug that causes unexpected behavior. If you see strange behavior, changing your password and/or revoking connections will stop it, as the application will no longer have access to your account.
10:50 am on Aug 10, 2011 (gmt 0)



Just same thing happened to my Twitter account as well few days back. Someone posted tweet like this “earn easy money…$300” with a tiny URL and I was surprised that who did it when I haven’t shared my password with anyone. I just deleted those tweets and changed my password.
9:04 pm on Aug 10, 2011 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



It can happen if you fell for phishing.

You receive an email, or click on a link which you think takes you to the default twitter page. You enter your usename and password, get redirected to the main twitter site but your details are captured and used later for spam.
2:54 pm on Aug 18, 2011 (gmt 0)

WebmasterWorld Senior Member bwnbwn is a WebmasterWorld Top Contributor of All Time 5+ Year Member



Never click links in emails for anything to do with twitter, facebook, myspace, banks, google, etc and etc. It had to have happened through the app. I have discontinued that service and taken them off my site.
7:16 am on Sep 14, 2011 (gmt 0)



It is true, there are a lots of hackers who seeks profile of big brands. You must never click on the unwanted links mailed to you as spam.
 

Featured Threads

Hot Threads This Week

Hot Threads This Month