For some weeks they have been circulating direct messages on Twitter seeking to trick users into gain access to your accounts and spread all kinds of spam. In the following image you can see an example of a message I received a month ago:
The message in English says that someone is creating rumors about me and includes a link, clicking it opens a fake Twitter page (phishing) that my user requests and password as if it were the normal login of the web.
The following image shows a recent variant of the same deceptionIn this case, the capture is from the alert that arrives by mail:
Clicking on the link loads the following false page (already reported):
By design it looks like Twitter, but if you pay attention to the URL in the browser you will notice that you are actually on another page. In this screenshot you can also see the WOT plugin warning stating that the page has a bad reputation.
Many fall into these traps and once their accounts are compromised they are used to trick more users by sending similar direct messages and posting spam tweets promoting fraudulent services, pharmaceuticals, etc.
What to do in these cases?
Two things … on the one hand change Twitter password As soon as possible to block access to spammers, also from other services such as Facebook if you used the same in both.
It would also be good to check the applications installed on Twitter to eliminate those that seem strange or are not using.
Be very careful when entering passwords! When doing it on services like Twitter, Facebook or your email account, pay attention to the URLs and make sure that the https is present to establish a secure connection between your computer and the remote server.