Security experts at Trend Micro are warning users to be on their guard after they discovered yet another Twitter spam campaign, this time using fast food giant McDonalds as a lure.
Designed to cash-in on the trend for giving ‘gift cards' to friends and family during the festive season, this scam uses the hashtag #mcdonalds gift card and shortened URLs to trick users into clicking through to a dodgy link, according to Trend Micro fraud analyst Cris Lumague.
"McDonald's is a globally well-known fast food chain that, like many other establishments, do offer certificates and vouchers for patrons who would like to give these as gifts or rewards," he explained on the TrendLabs Malware blog.
"Unfortunately, closer inspection of the shortened link reveals a URL that doesn't seem to have anything to do with McDonald's gift certificates."
The link actually takes users to an adult dating site landing page, he said.
"We consider the URLs used in this attack as malicious because of the deceitful nature by which they are used," added Lumague.
As Lumague explains in the blog, it's not the first time McDonald's has been used as a spam lure and it won't be the last. Another interesting point to note is the increasing prevalence of such scams on Twitter.
The medium is now so popular that users must be aware that scammers and malware writers will be doing their best to spread their messages via tweets on the site.
In particular, users should take care when searching the general site for generic words and phrases as above, rather than solely among their contacts.
Australian government to require technology and communications companies to provide access to messages
New bill avoids demanding 'backdoors' in encryption, but includes measures to compel companies to provide access to encrypted communications
Indonesian overclocker Ivan Cupa (with the aid of a lot of liquid nitrogen) achieves record overclock on AMD's latest Threadripper
Ssupermassive black hole is so big it corresponds to four per cent of the galaxy's total mass
Imminent attack will target a single bank with cloned cards used to fraudulently withdraw millions over one weekend