Twitter Phishing

Got an email about a direct message "from" Twitter that turned out to be a phishing scam. A friend's Twitter account was hacked (whatever that means) and was used to send out emails directing you to a fake Twitter page. I almost put my login and password but since I was already logged in to Twitter, I thought it was strange and double checked the URL. Turned out it was TVVIITER.COM:

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

Domain Name: TVVIITER.COM
Registrar: XIN NET TECHNOLOGY CORPORATION
Whois Server: whois.paycenter.com.cn
Referral URL: http://www.xinnet.com
Name Server: NS11.XINCACHE.COM
Name Server: NS12.XINCACHE.COM
Status: ok
Updated Date: 10-may-2012
Creation Date: 10-may-2012
Expiration Date: 10-may-2013

Last update of whois database: Fri, 25 May 2012 03:24:21 UTC

Looks like the domain was registered in China just recently. What were they going to do when they steal my account? Tweet my 18 followers with more spam? Why are they doing this when Twitter is banned/blocked/censored in China... should be spamming Sina Weibo instead.