Twitter Phishing Exploit

Be on the look out for direct messages containing text like this:

hey! check out this funny blog about you… [link goes here]

It will send you to a page that looks like the twitter login page.  It is actually a phishing site that steals your username and password then redirects you back to twitter.

I just gave it an account to play with, in order to find out what’s going on.  The ID of the account I gave is @stealme.  Let’s see what happens with it.