Security News > 2023 > March > Convincing Twitter 'quote tweet' phone scam targets bank customers

Convincing Twitter 'quote tweet' phone scam targets bank customers
2023-03-16 14:00

A convincing Twitter scam is targeting bank customers by abusing the quote-tweet feature, as observed by BleepingComputer.

Users tagging Twitter accounts of their banks in their tweets-for example, when raising complaints about an issue, should watch out for responses from non-verified Twitter accounts that may closely be impersonating the bank's support staff and instead be a scam.

What makes this scam particularly interesting is, the fact that genuine companies sometimes choose to reply via a separate Twitter account, different from their corporate one, for tweets which are akin to support requests.

The illicit Twitter account, AXIS BANK 00 has since been suspended.

The enumeration at the end of these Twitter handles suggests scammers are simply recreating these accounts with variations of the handle, and naming these accounts using terms, e.g. "(BankName) cares" to make them appear to be the bank's Twitter support channel.

Another issue is, what happens to legitimate Twitter accounts of banks and financial institutions that continue to bear legacy verification badges-once these are stripped? These accounts may become more susceptible to impersonation by fraudsters.


News URL

https://www.bleepingcomputer.com/news/security/convincing-twitter-quote-tweet-phone-scam-targets-bank-customers/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Twitter 5 0 6 2 0 8