Today I arrived at work and discovered that someone had been sending unauthorised direct messages (DMs) from my Twitter account. These messages were of the form “This you???? <URL>”,  where the URL is a shortened URL which led to a site designed to phish for Twitter password details. I can see these messages by looking at the Sent list of my Direct mesages, and it appears that has been sent to a random selection of over 100 Twitter accounts (some of whom I follow, some I don’t recognise).

Firstly, apologies to everyone who received one of these messages and who was inconvenienced by it.

(more…)