Hackers Could be Using DMs to Hijack Twitter Accounts
Jun. 12, 2019With the Twitter accounts of megastar Amitabh Bachchan and singer Adnan Sami getting hacked, security researchers have warned that users should think twice before clicking on the links received in the Twitter Direct Message (DMs).
While Bachchan’s Twitter account was hacked late on Monday, the hackers took control of Sami’s Twitter account on Tuesday.
A group that goes by the name “Ayyildiz Tim Turkish Cyber Army” claimed responsibility for hacking both the high-profile accounts.
“Their modus operandi looks like they send DM (Twitter Direct Message) to the victims Twitter account and if the victim opens the DM (direct message) he/she is directed to a phishing page which looks like a genuine page,” Sanjay Katkar, Joint Managing Director and Chief Technology Officer, Quick Heal Technologies Ltd. told IANS.
“If the user fills the login credentials on this page his login information is gone to the hackers who later use it to login and change the original password and take control of the account,” he said, adding that there are even other ways a Twitter account can get compromised.
Users with large number of followers should switch on the two-factor authentication for their account, Katkar said.
Twitter only contacts users in-app or via an email sent from an @twitter.com email address. The platform never ask users to provide their password via email, Direct Message, or reply.
“All the social media services (Twitter/Instagram/Facebook etc,) have the security and privacy feature of two factor authentication. This will make it difficult for hacker to take control of your social media account,” Katkar said.
“I will also recommend everyone to go and read/check/understand all the settings under security and privacy of your social media account. It has lot of features to keep your account safe,” he added.
