Embarrassment on Twitter
It's not really the kind of message you expect to get from a friend or a colleague - or indeed from anyone you might know on a social network. The direct message from a Twitter friend read: "hey, i've been having better sex and longer with this here..." followed by a link to a website, which I chose not to follow.
I got this overnight from a colleague at the BBC, but it's also been sent by loads of other Twitterers - including the Energy Minister Ed Miliband.
Now, before you sense another scandal involving politicians and journalists, I should stress that all these people are victims of a phishing attack, which has been documented here by the security blogger Graham Cluley.
It appears their Twitter accounts and passwords have been compromised, perhaps by an earlier phishing incident - one which very nearly caught me out too. Yesterday I received a direct message - of the kind Twitter users are more inclined to trust. It read "haha, is this you?", followed by a link. I read it on my phone, foolishly clicked on the link - and arrived at what appeared to be a Twitter login page. Only then did I stop - and realise that this was an attempt to get me to give away my password.
It's another reminder that as soon as a service becomes popular, it's all the more likely to become the target for all sorts of scams and viruses - or indeed suffer its own security lapses. I was caught out a while back when a photo I uploaded of a BBC studio was somehow replaced by someone else's rather more arresting snap of a young woman wearing nothing but a smile.
So what's the best advice? Some people are saying you should never click on a link - but that would destroy one of Twitter's most useful functions, where people share interesting news stories, or point to information around a discussion.
In the end, it's all about trust and awareness - is it really likely that a microblogging friend would boast of their sexual prowess, or share a link without any explanation of what it was about? If not - don't click. And if you do use Twitter or any other service the security of which you fear may have been compromised, I'm sure you don't need me to tell you to change your password.