Tuesday, 24 May 2011

Twimates And Their Illegal Tactics

There's a new service currently in pre-launch which is similar to Twiends that allows you to increase your Twitter followers and Facebook page likes.

This new service called Twimates (twimates.com) uses hacking and other illegal tactics to harvest email addresses to send you promotional materials about their new service. They are also sending phishing emails using aliases asking for your Twiends account login information. They are doing this to harm the reputation of Twiends and to gain access to Twiends membership base.

How do I know this? Quite simply, after receiving a unsolicited email from them on the 19th May and replying to ask where they obtained my email address, their response was quite frankly, shocking. Here's a copy of their response:

"Hi Derek, I'm sorry if we sounded like spammers, but we really trying to help people out. We know twiends policies are making their users very unhappy so we want to build a better and more user friendly site. To be honest, we got your email from twiends. They have very poor security and we broke into sections of their site. Another reason why you should switch to a new and better service."

The phishing email was a bit more serious in that it was supposedly selling seeds and then asking for your Twiends account login information. The way they obtained email addresses for this was by visitors entering their email addresses on their pre-launch registration page.

I have spoken to Dave Sumter, the owner of Twiends concerning this issue and measures have been put into place to beef up account security on his system. I have also contacted the email marketing service and hosting company where the spam and phishing emails originated. Given the way they harvested the email addresses and with them posting phishing emails, this should give adequate reasons for these companies to act. In fact and while writing this post, I've had confirmation that both iContact and HostGator have already taken the necessary steps to prevent this from happening again.

So as a word of warning: Any new service that uses these kind of illegal tactics to obtain customers/members should be avoided at ALL times. Just be aware everyone.


Update 25th May 2011 at 9:34am:

I've just received an email from Twimates after they seen this blog post. Here's the contents of that email:

Dear Derek,

We know you've been contact by one of our staff. He has indeed used our email list and spammed the users that had pre-registered with his own offer of twiends seeds. This was no way affiliated with Twimates, we are a legitimate site and abide by all the TOS. He has since been sacked from the team, and we are continuing to develop twimates ready for the launch date on June 1st.

We apologize for any spamming created during this period and we want to let you know that we've put a stop to it. Please let us now if you could edit the very negative blog post you wrote about us or remove it. A proof that we are legit and we don't get our users by spamming is showing you advertising options that we've bought: http://www.twitdom.com. We are a featured app on that website and also have a banner at the top.

Best Regards,
Twimates Team

Unfortunately, whether it was one of their staff or not, they are STILL liable for this person's actions. Furthermore, advertising on twitdom only costs approximately $50...that's certainly a small amount to invest in advertising, especially if they're trying to prove their legitimacy to me. If I was in their situation, I would of provided more information to backup my claims.

Will this blog post be removed or amended as per their request? Given the hard facts, the admission of hacking into the Twiends site (which incidentally used the same vocabulary, email and IP address to the response email I received today) plus other information I cannot yet disclose, the answer is a definite no! Sorry Twimates, you've given us adequate reasons why nobody should trust you.


As ever, if you want to stay up to date with the latest blog posts, don't forget to follow via Google Friend Connect (button on sidebar), on Facebook or subscribe to our feed at: http://feeds.feedburner.com/DereksHomeAndBusinessBlog

You can also follow me on Twitter @djones1509 and on Facebook at:
http://www.facebook.com/djones1509
http://www.facebook.com/DereksHomeandBusinessBlog

Enjoy the rest of the week!



13 comments:

  1. As usual Derek great and timely info



    http://jpweddingphotograpy.blogspot.com/2011/05/blue-horizon-at-seaworld.html

    ReplyDelete
  2. Thanks for the heads up Derek....will avoid. Really appreciate your diligence on our behalf...

    ReplyDelete
  3. Although I don't use services like this to grow my followers...this was quite useful info and in time.At least now I know which email to avoid. :D

    ReplyDelete
  4. Thank you Jim, Raven and Abhisek. The more people that are aware of this, the better.

    ReplyDelete
  5. I haven't used any of these services at all. I believe in a quality over quantity approach. I know from my personal experience that more followers doesn't mean more hits on my posts. Thanks for posting this. It's shocking that they were so open about their illegal tactics, most hackers and phisers try to do it under the radar.

    ReplyDelete
  6. Thanks for the update Derek. I will share this one.

    ReplyDelete
  7. Useful blog entry, thank you a lot my dear friend Derek for sharing with us, Carlos from Brazil

    ReplyDelete
  8. really an informative post....but people should not use these type of illegal tactics 2 grow their followers cause in the end it is not worth it
    http://techankit.com/

    ReplyDelete
  9. What to say Derek, as usual your informations are great. Thanks for sharing with us.

    ReplyDelete
  10. Thank you for this valuable info Derek. This should be widely circulated.

    ReplyDelete
  11. Thank you for the heads up everyone...very much appreciated.

    I believe some are having problems commenting on the blog. This issue has been reported and hopefully, it should be resolved shortly.

    If you do want to comment and are unable to, please try again later or use the Contact tab above and send your comment via email.

    Thank you again everyone.

    ReplyDelete
  12. OH. MY. WORD. I am shaking my head at the sheer absurdity and mindset of anyone imprudent enough to ADMIT they hacked a company's system to harvest email addresses!!! Thanks for continuing to provide such valuable information to all of us, Derek. This is why I constantly suggest people find you and follow you. :)

    ReplyDelete
  13. Good info always acceptable for every one ;-). Thanks for sharing.

    ReplyDelete

Please note: To combat comment spam, non-constructive comments and comments containing links will be rejected. All submitted comments are subject to moderation before they are published on the blog.


I have had reports that some people have been experiencing problems when commenting on the blog. If you experience any problems when posting your comment, please send me an email with your comment plus the post title using the Contact tab above and I will manually include it for you. You can also send your comment via private message on Facebook or email on Google+.

Your blog comments are always appreciated and thank you for your patience while we try to resolve this issue.