TweetDeck Scammers Steal Twitter IDs Via OAuth

  • 6 June 2014
  • 1 reply
  • 321 views

Userlevel 7
Badge +54
Brian Prince  6/6/2014
 
Users who give up their TweetDeck ID are promised 20 followers for free or 100 to 5,000 new followers a day for five days.
Scammers are abusing Twitter's TweetDeck tool as part of a scheme that has roped in thousands of Twitter users, according to Bitdefender.
The scammers, believed to be from Turkey, are profiting from users' desire to increase their Twitter following. In the past month, the scammers have registered dozens of sites dedicated to the scheme and promoted them through Twitter Trends.
On the site, the scammers ask the victims for a Twitter username and lure them with an offer to purchase new followers or get them for free. Those who click on the free option get 20 followers immediately. Those who pay the premium are promised 100 to 5,000 new followers a day for five days. To get the new followers, users must authorize the TweetDeck. In the process, the scammers make off with the users' authentication tokens and receive TweetDeck's permissions without the users' knowledge.
 
Full Article

1 reply

Userlevel 7
The followng is a update on TweetDeck Scaummers
==============================================================================================
 Sealed with an XX how Teen gave TweetDeck a Heart Attack

 
 
 
 
By Kelly Fiveash, 12 Jun 2014
 
Summary/
A teenager claims to have been the source of the embarrassing TweetDeck security gaffe that was exposed to millions of Twitter users on Wednesday.
The 19-year-old "small, strange but cuddly" Austrian electronics and computer science student - whose handle on the micro-blogging site is Firo Xl - said that he spotted a very basic cross-site scripting (XSS) vuln in the Twitter desktop client when he was experimenting with the code for a heart symbol to tweet to his followers.
 
The Register/ Full Read Here/ http://www.theregister.co.uk/2014/06/12/tweetdeck_xss_vuln_uncovered_by_heart_hunting_teenager/

Reply