- cross-posted to:
- netsec
- technology@lemmy.world
- cross-posted to:
- netsec
- technology@lemmy.world
On April 9, Twitter/X began automatically modifying links that mention “twitter.com” to read “x.com” instead. But over the past 48 hours, dozens of new domain names have been registered that demonstrate how this change could be used to craft convincing phishing links — such as fedetwitter[.]com, which until very recently rendered as fedex.com in tweets.
And the one junior dev left at Twitter just learned it too.