Deep Tide TechFlow news, July 20, Slow Mist Yuxian stated on social media that there has been a surge in phishing email attacks targeting X platform users recently. These emails have the subject "New login to X From XXX" and can bypass Gmail's spam filtering system.
Attackers lure users by forging abnormal login notifications, prompting them to click on the "Change your password" or "Review the apps" links, which actually lead users to the official third-party application authorization page of X. Once users authorize, attackers gain permission to post and retweet on their behalf, allowing them to control content posted from the user's account without their knowledge.
Users need to remain vigilant and handle any email notifications claiming abnormal login to X accounts with caution, avoiding clicking links in the emails and authorizing applications.