Samsung Unpacked: Everything Announced Galaxy Buds 2 Pro Preorder Galaxy Watch 5 Galaxy Z Fold 4 Dell XPS 13 Plus Review Galaxy Z Fold 4 Preorder Apple TV 4K vs. Roku Ultra Galaxy Z Flip 3 Price Cut
Want CNET to notify you of price drops and the latest stories?
No, thank you

Twitter users warned about new phishing attack

Sophos says the new attack features direct messages with link to fake Twitter log-in page. Entering a username and password prompts a fake overcapacity "fail whale."

This is Twitter's spam warning.

Twitter warned on Wednesday about a new phishing attack in which direct messages to users link to a fake log-in page that steals passwords.

"We've seen a few phishing attempts today; if you've received a strange (direct message), and it takes you to a Twitter log-in page, don't do it!" the Twitter spam warning says.

The direct messages say: "hi. this you on here? http://blogger.djh****.com," Sophos reports in a blog post. The full URL is obscured to prevent people from unwittingly visiting the phishing site.

Clicking on the link takes a user to a page that looks like a legitimate Twitter log-in page. When the user types in the username and password, a fake version of Twitter's "over capacity" message is displayed, with the image of the notorious "fail whale" held aloft by birds.

"When I visited the page, I was then slingshot to another Web page on, claiming to belong to a blogger called NetMeg99," Sophos researcher Graham Cluley wrote. "It's not clear if NetMeg99 is involved in the phishing scam, but there is a suggestion that her Web page did also try to phish for credentials at one point."

If you have been duped by this phishing ruse, Sophos suggests that you immediately change your password at Twitter and any other sites where you used the same log-in credentials.