The Register® — Biting the hand that feeds IT

Feeds

Virally spreading scam spreads over Twitter

Twitosphere overtaken by 'Profile Spy' tweets

By Dan Goodin, 5th April 2011
  • print
  • alert

Customer Success Testimonial: Recovery is Everything

Twitter has been struck by a virally spreading worm that attempts to make money by scamming users into filling out surveys and viewing advertisements.

The rogue Twitter app is known as Profile Spy and gets installed by people who are tricked into believing it can tell them who has been viewing their online microposts. “Wow! See who viewed your twitter with Profile Spy,” the come-on reads.

Those who click on the link are asked to allow the app to access and update their account data. Once they do so, they are presented with an unending series of popups for online surveys and ads promoting car insurance, long distance services and games, according to Errata Security CEO Rob Graham, who blogged about the worm on Monday.

Suckers will also find two new posts added to their tweet stream: one that claims to say how many people have viewed the user's profile over the past day and the aforementioned tweet attempting to trick others into installing the rogue app.

Based on Twitter searches, the scam has generated plenty of posts, though at time of writing, most Tweets appeared to be warning others not to fall for the scam. Similar scams have been hitting Facebook for weeks now.

Those who fall for the scam are advised to revoke Profile Spy's access to their account data. To do so, go to Profile > Edit your profile > Connections and click the button that says Revoke Access. ®

Ensure Ease of Recovery with Asigra’s Agentless Software

COMMENTS

House Rules Send Corrections
All Reader Comments (5)
Highly Rated
Arctic fox

Modern mobile communication, one of the most extraordinary..........

.............of human history's technological achievements and what do millions use it for? Arsebook and Shitter. It makes you want to cry.

3
0
Winkypop

Revoke access...

....OR

...go to Profile > Edit your profile > Connections and click the button that says "Delete my account"

4
1
Anonymous Coward

elitiT

Damn, and I thought someone had finally written a 140byte virus...

oh well.

2
0

More from The Register

breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
30
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
17
breaking news
Yes, maybe we should keep hackers in the clink for YEARS, mulls EU
Watch out black hats, they just might throw away the key
39
Microsoft borks botnet takedown in Citadel snafu
Stupid Redmond kicked over our honeypots, wail white hats
19
Critical Java SE update due Tuesday fixes 40 flaws
And yes, most are remotely exploitable
33
Kaspersky slips server security into PC software as attackers get crafty
Want to bag a CEO? Aim for his family
8
NSA accused of new crimes ... against slideware
They may take our information but they cannot take our REFINED AESTHETICS
40