\nI just fell for a Twitter phishing scam — it took the form of a direct message from one of my contacts, with the message “This you????” and a link to a site that prompted me for my Twitter password (which, like an idiot, I entered before noticing that the URL was twitter.scammysite.com; blame it on browsing with a tiny mobile-phone screen while in line at the coffee shop). You have been warned — stay away from anything that reads “This you????” or “This you in this video????” Hell, I think that a good rule of thumb is to ignore anything that uses multiple question marks for emphasis. Even if it’s not a scam, it’s probably too dumb to read.\n<\/p><\/blockquote>\n
The message was most likely not sent by one of his contacts, but that contact’s account was hacked (or that contact fell for the same scam, allowing the phisher to use his contact to trap others). <\/p>\n
Doctorow is no neophyte, and this shows just how easy it is to fall for phishing scams. A moment of inattention, a bit too much multi-tasking, and you find yourself mechanically entering your password somewhere you shouldn’t.<\/p>\n
It also explains why so many people fall for social engineering tricks like installing Trojan horses on their computers. They just get in a mindset where no red flags pop up, and they go ahead and enter the password that allows the malware to act.<\/p>\n
Perhaps the best lesson here is that it is less knowledge of risks than inattention that can lead to successful phishing attacks. Be forewarned; every time a password request pops up on a web site, think carefully.<\/p>\n","protected":false},"excerpt":{"rendered":"
Cory Doctorow, author and BoingBoing editor, is not fresh off the boat onto the Internet. Yet it turns out that he fell for a Twitter phishing scam. Cory writes: I just fell for a Twitter phishing scam — it took the form of a direct message from one of my contacts, with the message “This […]<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[13],"tags":[102,134],"class_list":["post-1430","post","type-post","status-publish","format-standard","category-security-privacy","tag-phishing","tag-twitter"],"yoast_head":"\n
Twitter Phishing Scam Traps Savvy Netizen - The Mac Security Blog<\/title>\n<meta name=\"description\" content=\"Cory Doctorow, author and BoingBoing editor, is not fresh off the boat onto the Internet. Yet it turns out that he fell for a Twitter phishing scam. Cory\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Twitter Phishing Scam Traps Savvy Netizen - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"Cory Doctorow, author and BoingBoing editor, is not fresh off the boat onto the Internet. Yet it turns out that he fell for a Twitter phishing scam. Cory\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2010-02-24T10:44:02+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/images\/twitter.jpg\" \/>\n<meta name=\"author\" content=\"Peter James\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Peter James\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/\"},\"author\":{\"name\":\"Peter James\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#\\\/schema\\\/person\\\/d0c16bd0a4dd8f82d91204f400c8d116\"},\"headline\":\"Twitter Phishing Scam Traps Savvy Netizen\",\"datePublished\":\"2010-02-24T10:44:02+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/\"},\"wordCount\":316,\"publisher\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/images\\\/twitter.jpg\",\"keywords\":[\"Phishing\",\"X (Twitter)\"],\"articleSection\":[\"Security & Privacy\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/\",\"url\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/\",\"name\":\"Twitter Phishing Scam Traps Savvy Netizen - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/images\\\/twitter.jpg\",\"datePublished\":\"2010-02-24T10:44:02+00:00\",\"description\":\"Cory Doctorow, author and BoingBoing editor, is not fresh off the boat onto the Internet. Yet it turns out that he fell for a Twitter phishing scam. Cory\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/images\\\/twitter.jpg\",\"contentUrl\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/images\\\/twitter.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/twitter-phishing-scam-traps-savvy-netizen\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Twitter Phishing Scam Traps Savvy Netizen\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#website\",\"url\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#organization\",\"name\":\"Intego\",\"url\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/wp-content\\\/uploads\\\/2022\\\/10\\\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/wp-content\\\/uploads\\\/2022\\\/10\\\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/#\\\/schema\\\/person\\\/d0c16bd0a4dd8f82d91204f400c8d116\",\"name\":\"Peter James\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/02040a1b56c0554236733a69e59ffeacde3aff8b1d8fb9818a2b71ebbc0e2484?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/02040a1b56c0554236733a69e59ffeacde3aff8b1d8fb9818a2b71ebbc0e2484?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/02040a1b56c0554236733a69e59ffeacde3aff8b1d8fb9818a2b71ebbc0e2484?s=96&d=mm&r=g\",\"caption\":\"Peter James\"},\"url\":\"https:\\\/\\\/www.intego.com\\\/mac-security-blog\\\/author\\\/peter\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Twitter Phishing Scam Traps Savvy Netizen - The Mac Security Blog","description":"Cory Doctorow, author and BoingBoing editor, is not fresh off the boat onto the Internet. Yet it turns out that he fell for a Twitter phishing scam. Cory","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/","og_locale":"en_US","og_type":"article","og_title":"Twitter Phishing Scam Traps Savvy Netizen - The Mac Security Blog","og_description":"Cory Doctorow, author and BoingBoing editor, is not fresh off the boat onto the Internet. Yet it turns out that he fell for a Twitter phishing scam. Cory","og_url":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/","og_site_name":"The Mac Security Blog","article_published_time":"2010-02-24T10:44:02+00:00","og_image":[{"url":"https:\/\/www.intego.com\/mac-security-blog\/images\/twitter.jpg","type":"","width":"","height":""}],"author":"Peter James","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Peter James","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/"},"author":{"name":"Peter James","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116"},"headline":"Twitter Phishing Scam Traps Savvy Netizen","datePublished":"2010-02-24T10:44:02+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/"},"wordCount":316,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/images\/twitter.jpg","keywords":["Phishing","X (Twitter)"],"articleSection":["Security & Privacy"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/","url":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/","name":"Twitter Phishing Scam Traps Savvy Netizen - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/#primaryimage"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/images\/twitter.jpg","datePublished":"2010-02-24T10:44:02+00:00","description":"Cory Doctorow, author and BoingBoing editor, is not fresh off the boat onto the Internet. Yet it turns out that he fell for a Twitter phishing scam. Cory","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/#primaryimage","url":"https:\/\/www.intego.com\/mac-security-blog\/images\/twitter.jpg","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/images\/twitter.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/twitter-phishing-scam-traps-savvy-netizen\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"Twitter Phishing Scam Traps Savvy Netizen"}]},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116","name":"Peter James","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/02040a1b56c0554236733a69e59ffeacde3aff8b1d8fb9818a2b71ebbc0e2484?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/02040a1b56c0554236733a69e59ffeacde3aff8b1d8fb9818a2b71ebbc0e2484?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/02040a1b56c0554236733a69e59ffeacde3aff8b1d8fb9818a2b71ebbc0e2484?s=96&d=mm&r=g","caption":"Peter James"},"url":"https:\/\/www.intego.com\/mac-security-blog\/author\/peter\/"}]}},"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/1430","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=1430"}],"version-history":[{"count":0,"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/1430\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=1430"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=1430"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=1430"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![](\"https:\/\/www.intego.com\/mac-security-blog\/images\/twitter.jpg\")
<\/p>\n