With the Twitter accounts of actor Amitabh Bachchan and singer Adnan Sami getting hacked, security researchers have warned that users should think twice before clicking on the links received in the Twitter Direct Message (DMs).
A group that goes by the name “Ayyildiz Tim Turkish Cyber Army” claimed responsibility for hacking both the high-profile accounts. “Their modus operandi looks like they are sending DM (Twitter Direct Message) to the victims Twitter account and if the victim opens the DM (direct message) he/she is directed to a phishing page which looks like a genuine page,” said Sanjay Katkar, joint managing director and chief technology officer, Quick Heal Technologies Ltd.
“If the user fills the login credentials on this page, his login information is sent to the hackers who later use it to login and change the original password and take control of the account,” he said, adding that there are even other ways a Twitter account can get compromised.Twitter only contacts users in-app or via an email sent from an @twitter.com email address. The platform never asks users to provide their password via email, Direct Message, or reply.
“All the social media services (Twitter/Instagram/Facebook etc,) have the security and privacy feature of two-factor authentication. This will make it difficult for hackers to take control of your social media account,” Katkar said.”I also recommend everyone to go and read/check/understand all the settings under security and privacy of your social media account.It has lot of features to keep your account safe,” he added.