20 May

Clever Twitter Phish – Don’t Get Caught!

I just had an email come in that was crafted a bit more cleverly than most. First, here’s what the email looks like:

Screen Shot 2013-05-20 at 1.59.17 PM

 

 

 

 

 

It looks like the real deal. And when you click on the link…

Screen Shot 2013-05-20 at 1.59.33 PM

 

 

 

 

 

 

 

 

…it again looks genuine (click on the images to enlarge them). Check out the address in the address bar though – the domain is tpwitter.com. If you didn’t look or only gave it a cursory glance it would be easy to give away your Twitter login details.

According to the WHOIS info the domain tpwitter.com is registered to someone in China – though that is most likely false info:

Domain Name………. tpwitter.com

Creation Date…….. 2013-03-21 09:39:01
Registration Date…. 2013-03-21 09:39:01
Expiry Date………. 2014-03-21 09:39:01
Organisation Name…. zheng shi
Organisation Address. Shang hai City
Organisation Address.
Organisation Address. Shang Hai
Organisation Address. 200000
Organisation Address. SH
Organisation Address. CN

Admin Name……….. zheng shi
Admin Address…….. Shang hai City
Admin Address……..
Admin Address…….. Shang Hai
Admin Address…….. 200000
Admin Address…….. SH
Admin Address…….. CN
Admin Email………. zhengshi112@hotmail.com
Admin Phone………. +86.2164667486
Admin Fax………… +86.2164667486

Tech Name………… tao li
Tech Address……… Zhengzhou
Tech Address………
Tech Address……… Zhengzhou
Tech Address……… 450008
Tech Address……… HA
Tech Address……… CN
Tech Email……….. ym@enkj.com
Tech Phone……….. +86.37160135955
Tech Fax…………. +86.37160123888

Always be very careful when you are asked to log in anywhere – some of the crooks out there spend a lot of time carefully crafting websites to trick you into giving up your login details.