I clicked on a TikTok link that I found through Google Images on my phone. Instead of taking me to TikTok, it redirected me to a strange website that I didn't recognize. I immediately left the site before it fully loaded, so I didn't get a good look at it.
A few minutes later, I noticed an attempted login to my Twitter account. Thankfully, Twitter alerted me about the suspicious login via email, and I quickly changed my password. I also have multiple Twitter accounts, but it seems only one was targeted.
What could have happened here? How did the site manage to get my Twitter password, and why only that account? Should I be worried about other potential issues such as access to my phone or other passwords?
3 Answers
There's a chance this was just a coincidence. Generally, clicking a link shouldn't hack you or steal your tokens. Sure, it might be a zero-day exploit, but that's super rare and not likely aimed at regular users.
If it was a serious exploit, they probably wouldn't waste it on random accounts like yours.
It's possible your cookies got stolen, so resetting all reused passwords should be your priority now to keep your accounts safe.
It sounds like your login token or cookies might have been compromised. I'd strongly recommend changing passwords for any accounts you might have reused elsewhere. Also, make sure to log out of all active sessions on your Twitter account when you do this.
Related Questions
How to Build a Custom GPT Journalist That Posts Directly to WordPress
Cloudflare Origin SSL Certificate Setup Guide
How To Effectively Monetize A Site With Ads