20 Sep 2011

Bank of Melbourne's Twitter account hacked

The Bank of Melbourne in Australia had its Twitter account hacked earlier this month, and according to news sources the hacking was used to send phishing direct messages to followers. Both antiphishing software and antivirus programs could have been helpful for parties in this case.

In a tweet responding to the hacking, the Bank of Melbourne said "ATTN: Unauthorised DMs sent bw 4-5pm today, do not click link. No customer/personal data compromised. Apologies for the inconvenience. ^TT" followed by another one that said "Thanks for all your support. We take security very seriously & will be strengthening our policies to further protect our social channels ^TT," according to ZDNet.

ZDNet said judging by the fact that the attackers didn't just spread a prank or "hactivist" message using the stolen account, it's likely the hacker used a relatively advanced understanding of how cybercrime works. The attacked used a phishing link in direct messages in an attempt to take advantage of the trust customers have in the bank.

The website said that the bank could have been the victim of a virus or phishing attack. In either case, improved antivirus software and antiphishing software could be helpful for the bank.