In the light of the Stuxnet malware, a newly discovered worm spreading vulgar tweets may seem on the humorous side. However, those affected by this malicious code are not laughing, having seen how the virus spread messages saying they liked having inappropriate relations with goats, Sophos reports.
Twitter users found their accounts were posting the crude message of “goat romance” after they clicked on links reading “WTF.” Clicking on the link directed users to a webpage that contained some trivial code using cross-site request forgery technique to automatically post from the visitor’s Twitter account, according to Sophos.
All the user saw when visiting the link was a blank page, but behind the scenes it had sent messages to Twitter to post from the victim’s account. The messages could not be sent if users had not logged into Twitter at the time they clicked on the link.
“Chances are that the reason why this attack spread so speedily is that people were curious to find out what they would find at the end of a link only described as “WTF,” Graham Cluley wrote on the Sophos blog.
According to Cluley, Twitter posted an update about having disabled the link and being in the process of removing the offending tweets.