It was a Bank Holiday weekend here in the UK meaning that we had the pleasure of a longer break than normal, with Monday not being a normal working day.
But it appears that at least one bunch of criminals weren't resting on their laurels as they spread links pointing to what they claimed was an update to the popular Twitter client, TweetDeck.
? Hurry up for tweetdeck update!
? Update TweetDeck! Bank Holiday
? Critical tweetdeck update Bank Holiday
? Sorry for offtopic, but it is a critical TweetDeck update. It won't work tomorrow!
The tweets are being posted from hacked Twitter accounts, and do not link to a legitimate update for TweetDeck. Instead, unsuspecting users are putting themselves at risk of infection by a Trojan horse which Sophos detects as Troj/Agent-OOA.
TweetDeck has reminded its users that they should only download updates from its official website.
It's possible that the malicious hackers who spread the attack are taking advantage of Twitter ceasing support for basic authentication in their API today, meaning users have to be using a Twitter client which uses OAuth.
Regarding this particular attack, Twitter says it is resetting the passwords of accounts that it has seen distributing the dangerous link.
Continued @ Graham Cluely's Blog : http://www.sophos.com/blogs/gc/g/2010/08/31/fake-tweetdeck-update-preys-twitter-users/
Also: Fake TweetDeck update lures prompt password resets