Twitter users told to be wary of scam messages about verified accounts
Some verified users on Twitter have reported receiving a direct message claiming to be from the platform, asking for personal information.
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.Twitter has warned users to be aware of scammers posing as Twitter employees in order to try and get hold of log-in details and other personal information.
It comes after a number of verified users on the platform, including journalists, reported receiving direct messages (DMs) which claimed their verified status had been declared as “spam” and they needed to re-register.
The messages came from accounts claiming to be Twitter Support and asked users to click on a link in the message to fill in a form to re-apply for a “blue badge” of verification on the site.
These emails might include malicious attachments or links to spam or phishing websites. Please know that Twitter will never send emails with attachments or request your Twitter password by email
“Your blue badge Twitter account has been reviewed as spam by our Twitter team,” the scam message said.
It asked users to “appeal” this decision using an online form by clicking a link in the message, warning that those who did not would see their blue badge “deleted”.
In response, Twitter said it never asks for a user’s password when contacting someone.
“We’ve heard some accounts are posing as Twitter employees, sending DMs and emails,” the company said.
“If we contact you, we’ll never ask for your password and our emails will be sent from @twitter.com or @e.twitter.com only.”
A dedicated page on the company’s online help centre adds: “Some people may receive fake or suspicious emails that look like they were sent by Twitter.
“These emails might include malicious attachments or links to spam or phishing websites. Please know that Twitter will never send emails with attachments or request your Twitter password by email.”
The UK’s National Cyber Security Centre (NCSC) advises people to consider carefully before clicking any link they are sent, unsolicited, by an organisation, and encourages people to look for tell-tale signs including poor spelling or grammar, or a sense of urgency in the messaging to try to encourage a rash decision.