More Trouble in Twitter-town

Becoming popular makes you a big target as Twitter has certainly found out first hand. They may have been dealing with many more issues than a lot of the previous big dogs had to simply because the start-up was so small, and the holes were many. Twitter has grown exponentially recently, and it's security infrastructure has grown up a lot too - necessity is the mother...
Unfortunately for them, and who use Twitter, there are still issues that come up, and the latest is a new phishing scheme that poses as an actual friend/follower/followee. This technique is no different than similar campaigns that have been seen attempting to socially engineer MySpace and Facebook users out of their log-in credentials. I'd imagine it started with a single account, and branched out to the friends of the compromised account, then on to friends of friends, and on and on until he we are, talking about it.
This phishing attack arrives as a direct message to your Twitter account from someone you know (whose account has recently been hijacked). The message itself says "ROFL Is this you on here?" with a link to a supposed video. The link takes the victim to a false log-in screen where the log-in credentials are stolen. Any user that is on their toes will realize that they were already logged-in and this is kinda phishy (pun intended - re: fail whale).