Twitter users warned of fake password reset notification

4 Jun 2010

Twitter users are being warned of a new spam email which poses as a Twitter password reset notification.

According to Websense Security Labs, the spam contains a link to a compromised website that, when clicked or pasted into the browser, prompts the user to download a malicious executable named password.exe. 

The executable file turns out to be a rogue AV called Protection Center Safebrowser and what distinguishes this rogue AV from the others is that it actually displays on the user’s desktop some of the malicious files it installs, which makes the attack notification seem more believable. 

Websense’s ThreatSeeker Network has so far seen around 55,000 instances of this malicious spam email.

Article courtesy of