Consider this a public service announcement.
While out and about I received a Tweet that looked like this, [ Lol. this you??, followed by a long URL] (Mistake #1 long obscure URL, not a shortened one). Unfortunately I received this, while out, on my Droid and I did not even think twice about clicking on the link (mistake #2). When I clicked on the link it brought me to what looked like my sign in screen for Twitter asking for my sign in info (Mistake #3) and I “re-signed in” needless to say I bit on a phishing scam that immediately sent out dm’s (direct messages) to a bunch of my followers with the same message and bug. I have since gone and changed my sign in info for my account, and warned all my followers, but felt this would be a great learning experience to share.
First I felt safe being on my phone, wrong. Next I should have noticed a long obscure URL, not a shortened one and not a recognizable domain. I clicked the link, then against my instinct re-signed in to Twitter (Next time I will shut down the explorer, and reopen Twitter directly and see if it request my log in (With my phone, it remembers all my sign in info, so I should not have fallen for this.)
Moral of the story, be vigilant in your actions, thinking about this story, the dm would not have gone anywhere if I waited until I got home to view on my computer, and more importantly if I closed everything down and checked my twitter account to confirm that I was logged in I could have avoided this mess.
I hope this can somehow help someone else from falling for the mistake I made.