Inauthentic Accounts Are Spamming Twitter With Spyware That Can Steal Users’ Private Data

Twitter’s negligence is astounding

Network graph representation of 27,449 Twitter accounts that tweeted, retweeted, or were mentioned in tweets which include include “clockurl[.]co” (tweets from Jan 5th to Jan 12th, 2019)

Background Information

Source: Trend Micro blog
Source: Trend Micro blog (tinyurl[.]com/VirtualGirlfriend points to miakhalifagame[.]com)
Source: Trend Micro blog
Source: Trend Micro blog

Round Year Fun (On Repeat)

Each dot (node) represents a Twitter account. Lines connecting accounts (edges) represent relationships between accounts (for example, if account A adds account B to a tweet where Account A has also added “clockurl[.]co/key/secretadmirer” → then Account A and Account B will appear connected via an edge in the graph)
Round Year Fun’s site (Aug 1st, 2019)
Round Year Fun has operated at least 10 Twitter accounts going back to early 2017
Round Year Fun’s site (Aug 1st, 2019)
Network graph representation of 27,449 Twitter accounts that tweeted, retweeted, or were mentioned in tweets which include “clockurl[.]co” (tweets from Jan 5th to Jan 12th, 2019)
ClockURL.co’s site (Aug 1st, 2019)

Follow-For-Follow, Spam Accounts

The @SugarLove779 account (middle account in the “You might like” section) mentions the number of followers they have (97K) in the account’s display name. This is quite common among inauthentic accounts
Source tweet (“sammy’s” userid = 1116800622752301056)
Source: Allegedly
Twitter Rules, it seems, are simply for show

Pure Negligence

CEO & Founder, Social Forensics | Previously: Co-Founder, Elementus | Featured in BBC, CNN, BuzzFeed, and Quartz, among others | SocialForensics.com

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store