Here’s a Twitter spam campaign which looks out for regional references in Tweets, then fires “you have won the Lottery” messages to lucky(?) recipients.
![Lottery spam! Also oh dear](https://www.malwarebytes.com/wp-content/uploads/sites/2/2015/03/twitlot1.jpg)
The above tweets say
This tweet is the winner of the March Twitter lottery from [username removed]. Claim your winnings at @_UK_Lottery_
Visiting the second spam profile (called UK Lottery Claim) reveals an account touting a large Twitter themed banner and a single Bio message:
![Lottery Claim Profile](https://www.malwarebytes.com/wp-content/uploads/sites/2/2015/03/twitlot2.jpg)
You have been confirmed by our systems as the March Twitter Lottery winner from your city. Proceed to the link below to claim your winnings. USE THIS LINK [bit.ly URL removed]
The Bit.ly URL has had 3,318 clicks since yesterday.
It leads to
claimyourgifthere(dot)pw
which eventually redirects the clicker to a “voucher & win” sign-up, asking for name, email, DOB, home address and phone number. There’s a “guaranteed prize draw” mentioned, so I guess the prize for winning the so-called Twitter Lottery is…another lottery?
![Vouchers?](https://www.malwarebytes.com/wp-content/uploads/sites/2/2015/03/twitlot3.jpg)
Both Twitter accounts have already been suspended. Giveaways are all well and good, but random spam sent your way rarely pays dividends. In fact, you could say it’s a bit of a gamble…
Christopher Boyd (Thanks to MrTom for sending over)