I woke up this morning to the apparent viral spread of the TweetCloud app that unoriginally, but very nicely displays your most tweeted words of the year, or month, or .. you get the idea. Here's mine ->
I've rolled out an experimental TwitBlock feature designed to reduce "false positives" for legitimate accounts that are being blocked. Whitelist entries are now subtracted from blocks. i.e. accounts marked as "not spam" will have their blocks counteracted on a 1:1 basis. If this feature is abused, it will be removed. It survives on the premise that the spam bots are not capable of whitelisting each other.
Here's the full story:
(more…)
As we approach 3,000 TwitBlock users, we know of over 100,000 blocks and have stored 20,000 profile pic checksums. I figured it was time to start crunching some numbers.
The first of many reports shows the top 20 most duplicated avatars that we know about.
Many spam accounts use identical avatars across hundreds of accounts. TwitBlock uses this fact as an indicator of a likely spam account. This report just shows the top 20 that we've identified, but there are many more.
This indicator is one of the best ways Twitter could prevent spam accounts from signing up in the first place. Clearly bots have been developed that continually generate new accounts and Twitter does not seem able to prevent this despite the most prolific accounts displaying such identical properties. With a tiny 0.01% of Twitter accounts authenticated with TwitBlock one can only imagine how many of these accounts are out there.
The list of Twitter accounts below all have something in common – They all have an identical profile image, which looks like this:
At the time of writing none of these accounts have been suspended. Whether they are breaking any laws or not I don't know, but it is clearly a syndicate whichever way you look at it. The profiles all point to a Korean-registered "Cash generator" website, which [I would hazard a guess] is a con.
TwitBlock unearthed this statistic from a list of only 18,000 100,000 blocked accounts provided by under 400 3,000 TwitBlock users . When you consider the size and growth of Twitter, you can well imagine that there are far more than 120 288 profiles in this syndicate. You also have to wonder how much of Twitter's growth figures can be attributed to this junk.
[ UPDATE: 18 Aug ]
Many of these accounts have been suspended, but TwitBlock is discovering new ones each day – currently 248 accounts known with this image.
[ UPDATE 19 Aug ]
I've produced a report of the top 20 most duplicated profile pics identified by TwitBlock
Some people have complained that they get a high spam score and point out that they are not spammers. There are a number of important things to note about this.
Roughly in order of accuracy, here are the 8 tests currently performed in the standard TwitBlock scan.
I've finally got round to building the Twitter app I've been thinking about for months. While everyone else is preoccupied with making fun, or cool apps, I've been thinking about the increasing problem of spam and junk followers on Twitter. I won't go into why I think this is such a problem right now, plenty of time for that later.
This is just a quick announcement to say that I've released an early alpha version of a tool that I hope to develop into something genuinely useful. Currently it's a simple scanner that analyses your followers for signs of "spammy" behaviour. I'll post more details about these indicators soon, and I'll also share some of the interesting discoveries I've been making about Twitter spam as I go on my mission.
UPDATE: I have posted about these indicators
I do marvel at the ingenuity of spammers sometimes. Despite being crap programmers, they do have a knack for coming up with new ways to deliver their poisonous junk. It's almost enough to make me consider life of crime.
After placing a job advert on Gumtree, we (my current employer and I) received a touching email from someone intersted in our junior developer role. Clicking their portfolio link took us to a spammer's "search" portal complete with gambling site pop-ups.
I just became aware of an apparently legitimate US-based company who I shall not provide a link to;
[whois guard] [dot] [com] – operated by [name cheap] [dot] [com].
Their opening gambit "We hate spam like you do" is somewhat ironic when you consider that their services are of enormous help to cyber criminals such as phishing gangs. These ‘people' need to operate domain names, but they must remain untraceable. Protecting their whois data is an obvious step towards concealing their identity. I am not suggesting that companies offering such services are corrupt, rather that it highlights the dichotomy of the internet privacy problem. (more…)