StalkTrak the new twitter scam

StalkTrak phishing scam website
StalkTrak phishing scam website
Do not trust this app or page

Currently there is a twitter DM (Direct Message) telling you to “Find out who’s stalking your twitter”. It’s a scam to steal your twitter id and password.

If you’ve authorized StalkTrak to use your twitter account, you’re a victim of a scam. Your twitter password and user name has been stolen. Change your twitter password immediately.

Just like I warned in How to Avoid Twitter Phishing Scams, this scam is designed to fool users on mobile devices like smart phones. The site looks at first glance to be twitter, but it is spelled t-v-v-i-t-i-l-e-r, relying on our brain’s ability to read and ignore misspelled words.

That’s a screenshot on the right.

Note that the domain name, DM phrase and application name will change as this attack matures. I’ll update this entry with new domains, application names and phrases as I see them.

P.S. I know Stalktrak is an old scam, but it has raised it’s ugly head again with new domains and phrases.