# Posted: 22 Feb 2010 09:25
A Twitter phishing attack is spreading rapidly today, attempting to obtain Twitter logins via Direct Messages. If you receive a message reading "lol, is this you", and linking to a site called "bzpharma", do not click the link.
Users who do click that link and enter their details are inadvertently letting spammers take over their accounts, which are then used to spam the same Direct Message to all their friends.
If you're receiving these messages, your account is not compromised, but if you find you're sending them, make sure to change your Twitterpassword immediately.