<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=utf-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<p>Right now everyone is going on and on about how Russians spent
256K on ads on Twitter to influence the election. Much less
understood is how great Twitter ads are for targeting phishing
attacks! I wrote this whole article while back <a
moz-do-not-send="true"
href="https://tindertipsforgirls.blogspot.com/2016/03/paying-for-okcupid-is-stupid.html">here</a>
on it. People are genuinely good at phishing now. The "<a
moz-do-not-send="true"
href="https://www.eff.org/deeplinks/2017/09/phish-future">Fake
RedTube subscription</a>" gambit is great fun. And yet, Jar
files still fill my inbox, because clearly those still work? <br>
</p>
<p>Halvar talks in his current keynote about how important it is to
understand the iterative nature of the hacking game, but I think
willful ignorance is still the name of the game in SV. In any
case, has anyone been paid to do a "Twitter Ad Phishing Attack"
the way people get paid to do email campaigns?<br>
</p>
<p>-dave</p>
<p><br>
</p>
</body>
</html>