Twitter Verified Accounts Targeted as Part of a Large Phishing Attempt

On Twitter, verified accounts are those that have a blue badge with a checkmark. These accounts often represent well-known influencers, celebrities, politicians, journalists, activists, as well as government and commercial entities.

The blue verified badge on Twitter lets people know that an account of public interest is authentic. To receive the blue badge, your account must be authenticnotable, and active.

Source

What Happened?

Twitter verified accounts are now being targeted as part of a large phishing attempt that takes advantage of Twitter’s removal of the verified badge from numerous verified profiles.

So @Twitter has removed my blue tick verification because they can’t be sure I’m me. Fair enough, some days I’m not entirely sure myself…

— Jamie Theakston (@JamieTheakston) December 2, 2021

The campaign sends an email to users, generally to the email address listed in their Twitter profile, requesting them to help verify their identity in order to maintain their verified status.

It’s interesting to note that the phishing campaign is happening soon after Twitter’s CEO, Jack Dorsey, decided to leave the position he held for over 16 years.

Source

How Does the Phishing Campaign Work?

As BleepingComputer editor,  Ax Sharma, reports the phishing email advises the

Read More: https://heimdalsecurity.com/blog/twitter-verified-accounts-targeted-as-part-of-a-large-phishing-attempt/