A new worm that could attack thousands of Twitter users has been detected.

 

PC Tools has detected a new scam that claims to drastically increase a user's Twitter followers by using a website called Twittercut. It takes advantage of the current trend of amassing Twitter followers in order to capture users' Twitter account details and self-propagate.

 

Twitter users may see a tweet in their stream that reads ‘OMG I just got over 1000 followers today from http://twittercut.com'. Once they click on this, the link takes them to a fraudulent Twitter website requesting their login and password details. It then sends out this tweet to all of their followers and directs users to a dating website, with the aggregate number of views resulting in affiliate revenue.

 

PC Tools claimed that the script embedded on the Twittercut website provides statistics on the unique visitors. As of 25th May there were approximately 4,778 unique visitors, and by 26th May there were approximately 8,735 unique visitors - a total of 13,000 unique visitors in the last two days and revenues estimated well into the thousands of dollars, based on a pay per click system.

 

Sergei Shevchenko, senior malware analyst at PC Tools, said: “This is another example of how cybercriminals will capitalise on areas of significant public interest. As people look for new information on the threat, it's important to tell them that cybercriminals may be using this opportunity to find more victims.

 

“Like any threat it's important that consumers know what to look out for to keep their computers and their records safe.”