Musk’s proposition to charge monthly fees on the social media platform is encouraging cybercriminals to act.
Blue check marks that denote a verified public account on the site will now be available for purchase. It’ll cost you $8 a month to keep your verification active. Due to the confusing nature of the change, criminals are eager to pounce on unsuspecting users.
Many Twitter accounts have claimed they’ve been on the receiving end of phishing attacks as of late. Threat actors are claiming a verified user might lose their status unless they give up their login information. What was once a verification issue is now becoming a cybersecurity nightmare, as these emails are able to get past spam filters and settle discreetly in your inbox.
The email in question is sent from a Gmail account, and offers a free verification badge to users if they give up their credentials. The scammer’s “Help Center” page is made to appear similar to Twitter, and asks for usernames, passwords and phone numbers. These nefarious individuals use social engineering at opportune times, especially when emotions are high and vigilance may be low.
It’s important to always keep an eye out for suspicious emails, and make sure you have multi-factor authentication (MFA) or two-factor authentication (2FA) turned on for all of your devices and accounts.