A fast-moving Twitter worm is in circulation, using Google s goo.gl redirection service to push unsuspecting users to a notorious scareware (fake anti-virus) malware campaign. At 8:45 a.m EST today, this Twitter search shows thousands of Twitter messages continuing to spread the worm. The worm’s redirection chain is using obfuscation techniques that include an implementation of RSA cryptography in JavaScript to obfuscate the page code. The scam is to trick the user into downloading a fake disinfection tool.
Source: https://threatpost.com/twitter-worm-uses-google-url-shortener-spread-scareware-012011/74860/

