Greg's Corner

Tagged: twitter scam Toggle Comment Threads | Keyboard Shortcuts

• 

  Geebo 8:00 am on August 1, 2023 Permalink | Reply
  Tags: Elon Musk ( 2 ), phishing ( 73 ), Scams ( 1,224 ), Twitter ( 13 ), twitter scam, X   

  Twitter rebrand brings out scammers 

  

  By Greg Collier

  If you’ve been following the news lately, you’re probably aware of Elon Musk’s rebranding of the social media platform Twitter into X. Gone is the blue Twitter bird that has graced the platform for over 15 years, replaced by a stylized X as the logo. So, when a story like this is large enough to garner national headlines, leave it to the scammers to take advantage of the situation.

  As we have said in the past, scammers are probably the most news-connected people around. They can take a news story as small as a local power outage to a massive story like this and use it to their advantage. In the case of Twitter/X, many scammers have launched a phishing campaign against Twitter/X users, especially those who signed up for Twitter Blue.

  Before Musk took over Twitter, to get the vaunted blue checkmark next to your name, you had to be someone of importance. After Musk bought Twitter, he instituted Twitter Blue, which allowed users to have a blue checkmark as long as they paid an $8/mo. subscription fee. Many critics claimed Twitter Blue devalued the checkmark, and therefore devalued Twitter.

  Now, while Twitter is in the middle of a rebrand, the scammers have decided to strike. Many Twitter Blue users have received emails telling them they need to update their subscriptions to X memberships. The email also contains a link for users to click on to supposedly update their memberships. If someone were to click on the link, they would essentially be handing their Twitter profile to scammers. From there, scammers can use what appear to be verified accounts to spread even more scams.

  To better protect yourself against phishing scams like this, do not click on links or download attachments in emails from unknown or suspicious sources. Check the email address of the sender to ensure it matches the official email address of the organization they claim to represent. Phishers often use email addresses that resemble the real ones, but have slight variations. Legitimate organizations rarely ask for personal information through email or text messages. Be cautious if an email requests sensitive data, such as passwords. Lastly, before clicking on any link, hover your mouse pointer over it to see the actual URL. This allows you to check if the link is legitimate or if it redirects to a suspicious website.

   

  Leave a ReplyCancel reply
• 

  Geebo 8:00 am on September 29, 2021 Permalink | Reply
  Tags: paypal ( 10 ), paypal scam ( 12 ), Scams ( 1,224 ), Twitter ( 13 ), twitter bots, twitter scam, venmo ( 26 )   

  Twitter bots are scamming PayPal and Venmo users 

  

  By Greg Collier

  We didn’t intend to write three stories in a row about payment app scams, yet here we are. Apps like PayPal and Venmo have become so common, it’s almost expected for scammers to try and weasel their way into our electronic wallets. We have documented quite a number of scams that involve not only PayPal and Venmo, but Cash App, Zelle, and other platforms as well. Those scams usually involve some kind of fraudulent transaction, but it seems at least one group of scammers have stepped up their game when it comes to finding new targets.

  Scammers have recently set up bots to look for any mention of the names PayPal or Venmo. For example, if someone were to ask another person on Twitter if they had a PayPal, so they could pay them for an item or support a content creator for example, the bot picks up on that mention. What happens next borders on evil genius territory.

  The bot will then make an almost duplicate Twitter account of the person being asked if they have PayPal. They’ll block the account they’ve cloned, then respond to the person who asked about their PayPal account with a link that goes to the scammers account. So the person who is supposed to be receiving the money doesn’t even see the fake account responding to the person who asked them about their PayPal account. In a normal Twitter conversation, it would go something like this.

  Person 1: Hey, I like your content. Do you have a PayPal?

  Impersonated Account: I sure do. (With attached link to scammer’s PayPal)

  Meanwhile, Person 2 never sees the impersonated account respond, and loses out on a sale or support.

  If you feel the need to discuss someone’s PayPal or Venmo account with them on social media, make sure to do it through private messages and not in a way where everyone can see it. Also, if you’re someone who solicits donations for their work through PayPal, it’s best not to list your PayPal details in your public profile as bots could be targeting you.