The Cost Of Identity Theft in NZ

Phishing scams, hijacking of TM accounts, keyloggers and all manner of other nasties. This is the place to report them and get help if you've been hit.
Post Reply
User avatar
Foggyone
Site Admin
Posts: 9880
Joined: Sat May 22, 2004 8:16 pm
First Name: Peter
Location: Lower Hutt
Contact:

The Cost Of Identity Theft in NZ

Post by Foggyone » Tue Mar 02, 2010 8:55 pm

Facebook, Twitter offer crims rich pickings
Already the cost of identity crime is put at up to $200 million a year in New Zealand.
Green MP Sue Bradford's Twitter account was hacked last year with messages posted about her sex life; she has since changed her password.
Google, the answer to so many questions!
-----------------------------------------------------

User avatar
Googlybear
Members
Posts: 2108
Joined: Mon Feb 19, 2007 10:51 am
Location: Auckland

Re: The Cost Of Identity Theft in NZ

Post by Googlybear » Mon Sep 19, 2011 6:44 am

This just in...
Hi,

Twitter believes that your account may have been compromised by a website or service not associated with Twitter. We've reset your password to prevent others from accessing your account.

You'll need to create a new password for your Twitter account. You can select a new password at this link:
https://twitter.com/account/password_re ... xxxxx-user" onclick="window.open(this.href);return false;

As always, you can also request a new password from our password-resend page: http://twitter.com/account/resend_password" onclick="window.open(this.href);return false;

Please don't reuse your old password and be sure to choose a strong password (such as one with a combination of letters, numbers, and symbols).

Once you log in, be sure to:

* Review your approved connections on your Connections page at http://twitter.com/account/connections" onclick="window.open(this.href);return false;. If you see any applications that you don't recognize, click the Revoke Access button.
* Avoid using websites or services that promise to get you lots of followers. These sites have been known to send spam updates and damage user accounts.

As a reminder, when logging in always check that your browser's address bar is on a http://twitter.com" onclick="window.open(this.href);return false; website before entering your password.

You can also visit our help page for hacked or compromised accounts.

The Twitter Team
i nearly ignored it thinking just another phish, however the URL was the valid Twitter Website
I changed my password and found some scum has been tweeting get-rich-quick website under my account.

There is no way some miscreant got my password by duping me, i didn't even remember that i had even opened a twitter account.

I think it would be an understatement to say that twitter and similar associated sites are having major problems with their security.
http://www.google.co.nz/#hl=en&sugexp=g ... 78&bih=798" onclick="window.open(this.href);return false;
About 116,000,000 results
i get annoyed at so called security teams that advise that users ensure their browser address begins with xxxxxx.com to ensure they are on the real site without mentioning that a slash must appear immediately after the domain suffix.
criminals have been using sub domains for ages to fool people into thinking they are at the legitimate site.

how many users still fall for a website such as http://www.twitter.com.myaccount.com/loginpage.htm" onclick="window.open(this.href);return false;

User avatar
Foggyone
Site Admin
Posts: 9880
Joined: Sat May 22, 2004 8:16 pm
First Name: Peter
Location: Lower Hutt
Contact:

Re: The Cost Of Identity Theft in NZ

Post by Foggyone » Mon Sep 19, 2011 7:18 pm

When did you open the account? Was the original password shared with another account that could have been compromised? It's quite common for stolen passwords to be tries in several locks.

My worry would be malware (keylogger) on the computer. Modern malware can scan index.dat (and other places) in Windows computers. Some of the information you would think is long gone can persist and be retrieved.

If you run windows you could be infected without knowing it, even with industrial grade virus solutions.
[url=http://www.net-security.org/secworld.php?id=11609}see here about NBC Twitter hack.[/url] A phish was NOT involved, if the story is to be believed.
Google, the answer to so many questions!
-----------------------------------------------------

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest