Video: Twitter spammer caught on camera

I’ve written before about how I have caught sexy spammers stalking me on Twitter.

This evening, I suspected something similar was happening when I stumbled across the details of one of the latest people to follow me. At the time of writing, Sara4877 has only ever made one post on Twitter but she is already following over 100 people.

Somewhat surprisingly, as you’ll see in the video I made, she only seems to follow people with the word “Graham” or “Honda” in their name:

(Enjoy this video? You can check out more on the SophosLabs YouTube channel and subscribe if you like)

It shouldn’t take a rocket scientist to work out what is going on here. “Sara”, or at least the people who created her account, are trying to scoop up Twitter names in preparation for sending messages via the micro-blogging system. “She” probably found the usernames by using the Twitter search engine or API to query its database for matching names. My guess is that whoever is behind this didn’t just search for the names “Graham” and “Honda” – they have probably tried with lots of other words too, creating many different versions of “Sara”.

The messages when they are inevitably sent from this account could be spam, or they might even link to malware, but one thing is for certain – I don’t want to receive them. Your best advice is to block suspicious followers like this, and if you believe you have encountered a spammer let the Twitter staff know by telling @spam.