According to BlockBeats, SlowMist founder Yu Jian has issued a security alert regarding a surge in phishing email attacks targeting users of the X platform. These emails, with the subject line 'New login to X From XXX,' are designed to bypass Gmail's spam filters. Attackers are sending fake notifications of unusual account logins, prompting users to click on links such as 'Change your password' or 'Review the apps.' These links redirect users to the official third-party application authorization page of X.
Once users authorize, attackers gain the ability to post and retweet content from the user's account without their knowledge. Users are advised to remain vigilant and handle any emails claiming unusual login activity with caution. It is crucial to avoid clicking on links within these emails and granting application permissions to prevent unauthorized access to their accounts.