Crooks are using the July 15th’s cyberattack on Twitter to carry out phishing scam designed to steal the login credentials of unsuspected users.
Twitter for the past year or so has been constantly embroiled in a range of controversies. Earlier this month Indian Prime Minister Modi’s personal yet verified Twitter account was hacked while in July, we saw how 130 accounts of high profile individuals were hacked resulting in attackers siphoning large amounts of cryptocurrencies from innocent users.
The attack took place when hackers accessed Twitter’s internal tool after a successful phone phishing scam against one of its employees.
Although this was taken under control by Twitter through careful action and responsible disclosure as shown below, the attack’s remnants have come back to haunt the social media giant.
We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools.
— Twitter Support (@TwitterSupport) July 16, 2020
A couple of days ago, First Look Media’s Security Team identified how attackers are using the text from the Twitter team’s response to the incident in order to send phishing emails to individuals and therefore hack them again.
A screenshot shared by researchers shows the text of the latest phishing scam against Twitter users:< ..
Support the originator by clicking the read the rest link below.
