Fake Twitter Site: tivtter.com
This is a good one. Compromised Twitter accounts are sending out links to a fake Twitter site which simply displays the Twitter log-in screen. Victims will unknowingly enter their Twitter ID and password as they have a thousand times before and then their account will begin sending messages to a site called “tivtter.com.” This scheme will bypass most email filters.
If your vision is poor or you are just not paying attention, tivtter.com will look just like twitter.com. However, if you are using the Firefox browser you can install a free extension called WorldIP which will display a national flag in the address bar indicating where the website is hosted. This is not a fix all since websites are hosted in many places, but it may clue you into something not being right. If you are used to seeing one flag associated with a website you use regularly, but then a different flag appears after you click a link your brain should tell you something is wrong.
In this case the real Twitter is hosted in the United States, but tivtter.com is in China. The domain is sponsored by BEIJING INNOVATIVE LINKAGE TECHNOLOGY LTD which has a long history of problems in the Domain Name System, see: http://www.icann.org/en/news/announcements/announcement-01oct08-en.htm. The owner of the site has nearly 2000 others currently being researched by us.