TechFlow news, on July 20, SlowMist's Yu Xian posted on social media stating that there has been a surge in phishing email attacks targeting X platform users recently. These emails use subjects such as "New login to X From XXX" and are capable of bypassing Gmail's spam filtering system.
Attackers trick users by sending fake account login alerts, prompting them to click on links labeled "Change your password" or "Review the apps," which actually redirect users to X's official third-party app authorization page. Once authorized, attackers gain permission to post and repost tweets, allowing them to control the user's account and publish content without the user's knowledge.
Users should remain vigilant and carefully handle any email notifications claiming unusual logins to their X accounts, avoiding clicking on links or authorizing applications casually.




