Phishing Ploy Forces Twitter to Reset Passwords

Twitter on Tuesday said it had to reset passwords for “a small number of
accounts” after the microblogging site was targeted by a phishing attack.

The site said that attackers had attempted to steal the login information
of users who had used their Twitter password username and password to sign
up for an untrusted third-party application. Officials didn’t disclose just
how many accounts had their passwords changed, saying only that the
third-party application had used the login information to post tweets to
their accounts.

“As part of Twitter’s ongoing security efforts, we reset passwords for a
small number of accounts that we believe may have been compromised offsite,”
Twitter said in a statement. “While we’re still investigating and ensuring
that the appropriate parties are notified, we do believe that the steps
we’ve taken should ensure user safety.”

Being able to rapidly share information, links, photos and videos is big
part of Tw
itter’s allure. But their popularity has long made them a prime target
for online criminals.

“Social networks are large, successful targets because phishers exploit
the trust the recipients have in their own social networks,” Jamie
Tomasello, abuse operations manager at security software maker Cloudmark,
said in an e-mail to InternetNews.com. “The phisher also takes
advantage of our natural curiosity to look at links in messages with
sensational subject lines and our immediate desire to react to a warning
message.”

“Users receiving these types of messages should pause before responding,
verify the sender, and ultimately go to the site directly instead of
clicking on the link in the message,” she added.

Additionally, many users are simply not careful enough in safeguarding
their login information. Third-party sites such as twitpic.com, TweetDeck
and twhirl require users to input their Twitter login information, but
security experts say the practice of reusing usernames and passwords on
multiple sites can lead to security breakdowns.

This isn’t the first time Twitter has been targeted by
hackers. In August, a denial-of-service attack perpetrated by a botnet
delivered a flood of traffic that temporarily disabled Twitter and slowed
Facebook and other services.

Twitter officials this week were quick to point out that the site hadn’t
been the source of a data breach and advised users to continue checking for
updates on the situation at Twitter feeds @safety and @spam throughout the
day.

Additionally, some users are receiving e-mails from Twitter recommending
that they create a new password by following a provided link or by logging
in directly at twitter.com.

Larry Barrett is a senior editor at InternetNews.com, the news service of
Internet.com, the network for
technology professionals.

RELATED NEWS AND ANALYSIS

• Huawei’s AI Update: Things Are Moving Faster Than We Think

  FEATURE |  By Rob Enderle,
  December 04, 2020

• Keeping Machine Learning Algorithms Honest in the ‘Ethics-First’ Era

  ARTIFICIAL INTELLIGENCE |  By Guest Author,
  November 18, 2020

• Key Trends in Chatbots and RPA

  FEATURE |  By Guest Author,
  November 10, 2020

• Top 10 AIOps Companies

  FEATURE |  By Samuel Greengard,
  November 05, 2020

• What is Text Analysis?

  ARTIFICIAL INTELLIGENCE |  By Guest Author,
  November 02, 2020

• How Intel’s Work With Autonomous Cars Could Redefine General Purpose AI

  ARTIFICIAL INTELLIGENCE |  By Rob Enderle,
  October 29, 2020

• Dell Technologies World: Weaving Together Human And Machine Interaction For AI And Robotics

  ARTIFICIAL INTELLIGENCE |  By Rob Enderle,
  October 23, 2020

• The Super Moderator, or How IBM Project Debater Could Save Social Media

  FEATURE |  By Rob Enderle,
  October 16, 2020

• Top 10 Chatbot Platforms

  FEATURE |  By Cynthia Harvey,
  October 07, 2020

• Finding a Career Path in AI

  ARTIFICIAL INTELLIGENCE |  By Guest Author,
  October 05, 2020

• CIOs Discuss the Promise of AI and Data Science

  FEATURE |  By Guest Author,
  September 25, 2020

• Microsoft Is Building An AI Product That Could Predict The Future

  FEATURE |  By Rob Enderle,
  September 25, 2020

• Top 10 Machine Learning Companies 2020

  FEATURE |  By Cynthia Harvey,
  September 22, 2020

• NVIDIA and ARM: Massively Changing The AI Landscape

  ARTIFICIAL INTELLIGENCE |  By Rob Enderle,
  September 18, 2020

• Continuous Intelligence: Expert Discussion [Video and Podcast]

  ARTIFICIAL INTELLIGENCE |  By James Maguire,
  September 14, 2020

• Artificial Intelligence: Governance and Ethics [Video]

  ARTIFICIAL INTELLIGENCE |  By James Maguire,
  September 13, 2020

• IBM Watson At The US Open: Showcasing The Power Of A Mature Enterprise-Class AI

  FEATURE |  By Rob Enderle,
  September 11, 2020

• Artificial Intelligence: Perception vs. Reality

  FEATURE |  By James Maguire,
  September 09, 2020

• Anticipating The Coming Wave Of AI Enhanced PCs

  FEATURE |  By Rob Enderle,
  September 05, 2020

• The Critical Nature Of IBM’s NLP (Natural Language Processing) Effort

  ARTIFICIAL INTELLIGENCE |  By Rob Enderle,
  August 14, 2020