Background: Compromised Twitter accounts are currently tweeting about new miracle diet pills. These tweets include links pointing to appspot.com, which redirects users to sites masquerading as the real Women's Health magazine. These sites use standard templates that include celebrity testimonials in order to promote a diet pill known as Garcinia Cambogia Extract. So how did these accounts get compromised in the first place?
It starts with a tweet from someone you follow. They will say something about a rumor or a nasty post going around about you. This narrative is designed to entice the user into clicking on the included link (Origin URL) to find out more.
Tweets |
---|
"OMG Awful Posts Going around about you, have you seen this yet?" |
"Awful Posts Going around about you, have you seen this yet?" |