❓ **Question**
@fatchy A certain cohort of users must fall for it otherwise why would it be worth going to the trouble to compose such toots?
@bibliolater Almost definitely phishing. The weird user name and server name, as well as the strange "netprocesse.com" domain are all suspicious indicators.
@badbede These were all red flags for me. These toots must work on some level for the scammers, otherwise why waste time composing them?
@bibliolater Oh absolutely. I'm sure these campaigns are somehow automated on the backend so that they only need a small percentage of users to respond to achieve their goals.
@bibliolater looks like phishing atack to me.