Yesterday we wrote about a new phishing attack on Twitter, which lured unsuspecting users into giving away their Twitter credentials. The compromised accounts were then used to spread the attack further via direct messages containing text such as "lol, is this you", "Lol. this is me?", "lol , this is funny" etc.

IT security firm Sophos now has detailed info on the attacks and a video describing them, which we’ve embedded below.

After the first attack wave, however, the phishers are now using the compromised accounts to send out spam, which resulted in a huge amount of Viagra-related messages on Twitter (Twitter), which read something similar to this: "Get bigger and have sex longer. go here", followed by an address that leads to a sexual enhancement site.

Once again, if you see unusual messages (similar to the examples above) sent from your Twitter account, it may mean it has been compromised, and you should change your Twitter password immediately.



:mashable.com