Phishing scam hits Twitter. Don't get sucked in!
To be safe, don't click on suspicious links, even though they're coming from people you follow on Twitter, and don't compulsively enter your login info without checking to make sure you're actually on a Twitter.com domain. This scam is particularly tricky because of the nature of direct messages, which have to come from people you've allowed to contact you. The Twitter Eng and Ops teams are aware of the problem, according to a tweet from Twitter's Biz Stone, and a warning message has been added on the Twitter homepage.