The curious case of the fake Steve Ballmer
On Twitter today, a fake Steve Ballmer quickly gained a lot of followers as people discovered the account. The account tweeted a few times, with a bunch of convincing pictures that hadn’t been posted anywhere else online, so many were lead to believe it was real.
Thanks for having me @Twitter! Guess I’m supposed to start with a #selfie, right? pic.twitter.com/Ivcas8gn2T
— Steve Ballmer (@MicrosoftSteve) April 18, 2014
The account quickly gained steam, with Anil Dash, Steve Sinofsky and others (including myself) tweeting the account, falling for the trick. Something seemed fishy about the account but I couldn’t put my finger on it.
I was almost convinced that the account was real (even Gizmodo wrote something about “Ballmer’s” first tweets from his iPhone!) then it tweeted this:
Just got private messaged a link to https://t.co/8R8Ohu5Oet. Any idea what this is? Dead link. #twitter
— Steve Ballmer (@MicrosoftSteve) April 18, 2014
That’s when I realized this account was doing the exact same thing that I’d seen a handful of other accounts that followed me over the last few days do.
This account is trying to scam Twitter into verifying it.
Backstory #
A few days ago, [Asher Langton](twitter.com/asherlangton) pointed out to me an account I was interacting with personally, @dailyexec, belongs to a serial fake account creator.
I’m fairly sure that the the man behind the account is named Arturas Rosenbacher, who constantly creates fake accounts for the purpose of fooling people into thinking he is someone he is not. Here’s some of the accounts he’s created in recent times:
TheChicagoPress, Arturas, Arturas_, rturas, ArturasAKR, OldAKR, dailyexec, OliviaOnReddit (posting someone else’s selfies to r/gonewild), BlacklistSocial, ChicagoAdmirers, iuparties, iuconfessions, anoncentral, IOCapital, rosenbaa, rosenbaa29, Arturas312, ArturasR, allanons, ArturasCEO, Anti_Sec, AnonIRC_, Antis3c, Anon_Ops, AnonDaily, OfficialAntisec, AnonOpsWorld, anonymouSabu, aajkr29, arturasr29, StartupIU, AKGroup, TetraKai Development, MarketVest, ArrowAdvisory, AK Holdings, DevelopNation, iInvestSmart, ArturasBiz, IU_Live, iArturas, GoogleStartups, CNNStartups, JimCNN, ChiTribTech, ChristianAntkow, WhiteHouseSMC, CNNNewsFeed, MrArmisen, GoogleChicago, BankOfChicago, VerifiedCNN
The list goes on and on. Many of them are convincing, and fool employees of the companies he purportedly says he works for into believing him, adding to the ‘credibility’ he is trying to create.
A simple look at cached versions of his Twitter bio expose the scam. He’s essentially claiming he’s done every notable thing ever.
The same guy was busted for saying he would pay for an evasi0n jailbreak and then never did. He’s been trying to scam people literally for years.
A day or two before I realized Arturas was behind all of this, he started tweeting from his @dailyexec account that he had been DM’d by Twitter about verification but “the link wouldn’t work” and started aggressively tweeting any Twitter employee he could find about his “problem.”
He DM’d me personally to try and ask me who to talk to as well as many others. Here’s an example of him trying to convince people that he’d been DM’d a link for getting a verified tick:
The link in question is this one: https://twitter.com/vit_onboard/onboarding?dm=1 (and no, it won’t work for you).
When you’re invited by Twitter to be verified, you’ll get an email or DM from the company with that link, which leads you to a survey which “verifies your identity” before granting you a little blue tick.
Arturas actually tried the same social engineering technique to get Google Glass previously, by retweeting a tweet about being invited to the join Glass Explorer program but just adding his own username in.
Assumably Twitter has caught on, as his accounts are all now suspended (except this new one), but his scams continue in often convincing ways.
I hope that this post makes others aware of this shady character’s actions and is a reminder not to trust everything you see online.
If you find this interesting, [make sure to have a look](scams.sdf.org/Arturas.html) at all the different ways Arturas has tried to scam people. It’s incredible.
When I interacted with @dailyexec before I knew, he seemed nice enough and even invited me for a beer in Chicago. The sad thing is, Arturas has even admitted to scamming people and continues to do so.
Not only is there all of this that stacks against the account, Steve Ballmer has also had a (rarely used) Twitter account for a number of years.
P.S - A huge thanks goes out to Asher Langton for pointing this out to me. I’m happy to talk with Arturas directly if he can explain why all his accounts keep disappearing.
Update: I discovered late today that the selfie the account tweeted was actually one Guillaume Faou who works at Microsoft and took the picture himself, meaning it had to be lifted from his profile since the real Steve Ballmer wouldn’t have ever had the photo.
Update #2: In the list of fake usernames I mentioned earlier, one that Arturas has been known to own; “Oliviaonreddit” posted to Reddit almost immediately after the account was created that Steve Ballmer had joined Twitter. Of course, Arturas says he’s been in a nightclub.
Update #3: The fake profile for Steve has been suspended.
Update #4: Arturas’ “personal” account has also been suspended, including the one he created for the assumably fake [Chicago Post](twitter.com/chicagopost). Nice work, Twitter!