Thursday, November 3, 2011

Twitter Account Hacked? Here’s how you can fix it.

Of late, many of my friends on Twitter have been sending Direct Messages to me that goes like “found this bad blog about you” and other similar lines that’s bound to intrigue anyone. Clicking on the link takes you to a site that looks exactly like Twitter’s homepage requesting your login credentials. Innocent users believe that their session has expired and provide their login details after which the sham site redirects the user to the real site as if they just logged in.

After this incident, the user’s Twitter account will start sending out Direct Messages with a similar link to others while tweeting the infectious link as well. If you see this happening to your account, here’s how to fix it and make your account secure again.

Change Your Password:

Password change

This is quite obvious. Since someone knows your login details, it is highly recommended that you change your password. Click here to change it.

When setting up a new password, ensure that it isn’t a regular dictionary word and use a tool like this one to generate a strong password. Mnemonic can be very helpful in memorizing the password or if you are too lazy (like me) start using a password manager.

If your password has been changed by someone else, you can either reset the password or submit a support request stating your trouble.

Review Applications:

Settings Page

Almost every time you authorize a service to use your Twitter account, your are giving them permission to post tweets/send direct message on your behalf and the link malicious links that spread from compromised accounts authorize an application to access your account after learning your login details. To ensure that this doesn’t happen again, you should go to the applications page and click on ‘Revoke Access’ for any application that you do not recognize. Also, revoke access for applications that you don’t use anymore.

That’s it; Your account is now back to your control. To prevent this from happening again, here’s what you need to remember.

  • If you receive a suspicious direct message from someone, do not click on the link and ensure that you notify the person.
  • Whenever you see the Twitter login page have a look at the address bar and make sure that is is TWITTER.COM.
  • Think twice before authorizing your account access to any application.
  • Use a secure modern browser to be safe from other malicious links.
  • Using the WOT (Web Of Trust) browser add-on will alert you if a link is malicious.