Currently there is a twitter DM (Direct Message) telling you to ?Find out who?s stalking your twitter?. It?s a scam to steal your twitter id and password.
If you?ve authorized StalkTrak to use your twitter account, you?re a victim of a scam. Your twitter password and user name has been stolen. Change your twitter password immediately.
Just like I warned in How to Avoid Twitter Phishing Scams, this scam is designed to fool users on mobile devices like smart phones. The site looks at first glance to be twitter, but it is spelled t-v-v-i-t-i-l-e-r, relying on our brain?s ability to read and ignore misspelled words.
That?s a screenshot on the right.
Note that the domain name, DM phrase and application name will change as this attack matures. I?ll update this entry with new domains, application names and phrases as I see them.
P.S. I know Stalktrak is an old scam, but it has raised it?s ugly head again with new domains and phrases.
I received this email ? up front warning it?s a scam:
(If you are not in charge of this please transfer this email to your President or appropriate person, thanks)
We are the department of Asian Domain registration service in china, have something to confirm with you. We formally received an application on?April 18,?2012. One company which self-styled ?Daess Investment, Inc? were applying to register ?zagz? as Network Brand and following domain names:
After our initial checking, we found the name were similar to your company?s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for ?Daess Investment, Inc?.
I didn?t think people would fall for this, but then a client sent me a similar email asking that I action it on their behalf.
The fake registration warning it trying to scare you into paying inflated registration fees to register your brand domain in a bunch of foreign top level domains. Now if you have the budget, reach and vision for that kind of world domination, by all means register them all ? just don?t do it with this spamming scammer.