Skip to main content

How Your Facebook Gets Phished and Your Twitter Gets Taken

Last summer I felt like a rockstar on twitter. I had finally got into the groove, comfortable with "tweeting" and I was gaining followers like never before. Over ten a day follower emails were coming into my inbox, announcements like "Benjamin White is now following you on twitter" ... I was getting pretty good at this social media thing! By the end of one week, when I should have had a few hundred followers, I still only had 70. Something wasn't adding up but I was too busy to figure out why, so I assumed people were just rapidly following, then un-following me as some kind of retarded marketing tactic. Then it started getting out of control... 30, 40, 50 new followers a day. It was becoming a nuisance, cluttering up my Gmail, so I logged into twitter to turn off those annoying email alerts. When the alerts kept coming, that's when I knew. Nobody was following me. Twitter wasn't sending me those emails. It was phishing.

Phishing is simple. You get a phony email that's designed to look like it's from a legitimate website. People click on those emails, thinking they need to accept a new friend, or respond to something, and the hook is set.  Once they "log in" to that faux website, it's over, they are caught. Phishing goes on not just for twitter or facebook, but for eBay, Yahoo! and You Tube. It's all over the net. It's especially bad for those people who have the same login and password to more than one online account. Criminals know everybody keeps this simple, once they have your login to facebook it's highly likely they can get into your webmail and then into other accounts.

I never clicked on the announcement emails directly, I learned years ago working (at eBay actually) that this is a no-no.  Instead I'd went directly to twitter.com to see who my so called new followers were. Even then it took a couple of weeks for me to figure out that I was being bombarded by phishing emails and I knew better. Still, I have different logins for everything, and gmail is excellent at figuring out what is spam and what is real.

There are other ways you can get phished, for example right within Facebook. Phishing does not have to come through your email. Any website where you can chat, or receive messages from other people you can get phished. The only rule anybody should try to remember is, don't click on links from a message that takes you to an outside site where you have to go log in. Just go to the outside site, type in that address yourself if you want to see that video, friend request, or special prize. Also, encourage your friends not to send you information that's not relevant to you.

Comments

  1. Here's an article from the BBC from November 24, 2010 about this exact issue. Apparently 20% of facebook feeds contain malware. I wonder how much money that research firm made for figuring out the obvious.... Just ask somebody who works in tech! http://www.bbc.co.uk/news/technology-11827856?print=true

    ReplyDelete

Post a Comment

Popular posts from this blog

NECO Alliance Rebates - Maytag, Samsung Appliance Rebates are Complete Bullshit

I just got tricked out of $300 I was told I was going to rebates from the purchase of my brand new $1500 Samsung refrigerator & Maytag dishwasher. Now, I can't recommend buying anything Samsung, Maytag, OR from Cummins Appliance after this customer experience.

Here's ONE of the incredibly lame emails I just received from NECO Alliance

Thank you for participating in the SAMSUNG APPLIANCES MARCH NECO ALLIANCE VISA REWARD CARD promotion. (March promotion? Never knew that...)

Your request for a rebate has been received and is being processed.

Unfortunately your rebate was rejected due to the following reason(s):
 -RECEIVED PAST POSTMARK (Gee, there was no deadline on my form!)


       *** DO NOT REPLY TO THIS EMAIL ADDRESS ***
This email has been generated by an automated service machine.
   Emails sent to this address WILL NOT be responded to.
(You SUCK!)
 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

I guess I sent the rebate …

UX Design Process aka Web Product Design Process

So... I'm on Pinterest updating a 'board' for my portfolio and I discover that other people have pinned my Experience Design Process graphic from my website. Apparently this graphic comes right up in Google Searches if you search on on Experience Design Process. Since the image on my site is small I'm re-posting the graphic here! Can anybody guess what this image was originally create for?


I don't know what I was thinking about these colors!

So what is going on here?
In the middle of the graphic is a series of linear main steps to take in order to design an interactive digital product. The process starts with identifying a project's goals and ends with meeting those goals. In order to meet those goals you need to do some careful work... Surrounding the steps are a set of tasks (or methodologies) to perform in order to complete each step of the process. Over-arching the entire process are guidelines like "vetting" and "informed iteration" (show…

How to Help Grandparents with Their Technology

I'm sitting here writing this on my dad's old iMac realizing I could have done a better job helping him with technology over the past few years. I feel like a bad daughter, an interaction designer ought to do a lot better for their parents. My dad was very capable, and fiercely wanted his independence, so I didn't bother him.  Still, I was already doing "tech support" for friends and strangers, and I'm realizing now that I could have saved myself a bit of work after he passed me on his gadgets. So here's my advice to people who have an older parent or friend, even if they are not a luddite!

Make yourself the Admin.
Set up their gmail, give yourself access.  Give them their password, make sure it's super easy to remember but tell them not to reuse this password for any reason anywhere.

Set up their iCloud, Amazon Prime, YouTube etc tethered to their new Gmail.  Yes, plug their credit card into these accounts, they're still independent! Give them their…