Posts

Showing posts from August, 2012

Abundant Caution Is Never Enough : Beware of StalkTrak

Image
My apologies to the folks who got a DM from my Twitter account for about an hour this afternoon. 

Here is how I think this happened. I have a strict password policy for myself and change it frequently. I test new tools regularly and make sure if the new tool asks for a Twitter login it is through the Twitter API and not asking me to login with username and password.

 Today I got a DM with this text "I saw that you viewed my profiler earlier :D want to know how i found out? http://bit.ly/XXXXX" ( Purposely added Xs so that link is not clicked by mistake. I ignored it as it seems sneaky anyway for a few hours. I went back to this tweet a few hours later and curious if this was a feature to check out like Linkedin's "Who viewed your profile".  I am not sure if I was on a mobile device or my personal laptop so I did not notice that the link actually goes to a phishing page.
It is always good practice to watch the address bar on your browser to make sure you a…