If you use Twitter, then you should take note of a new Twitter worm that is spreading through direct messages.

A new Twitter worm that is able to steal account information through a phishing scam, first initiated by direct messages sent on Twitter, was first mentioned on the social media source Mashable just yesterday.

Twitter has had its fair share of security related issues in the past. Computer users are being warned to look out for a direct message on Twitter that has the text “rofl this you on here?”, followed by a malicious web site link as demonstrated in Figure 1. below.

Figure 1. [source: mashable]

The link in the message portrayed in Figure 1. above should never be clicked on. If a computer user clicks on the link, they will be redirected to a fake Twitter login page which is a phishing site designed to steal your username and password. The direct message appears to be a link to a video coming from a Twitter user that you trust. This is somewhat similar to other worm infections that have inundated Twitter in the past.

Twitter is currently aware of this new threat and working on a resolution. Twitter users who may have encountered this threat are advised to change their password and contact Twitter’s support.