A Twitter virus is on the loose this evening, replicated by people clicking on mobile links shortened with Goo.gl like in this Twitter search. Thus far I’ve seen it spreading through two different urls http://goo.gl/od0az and http://goo.gl/R7f68 but there’s a good chance there are others. The worm also seems to be creating and/or hijacking a number of newer accounts for the past seven or so hours.
The Next Web has traced the http://goo.gl/od0az URL back to http://artcan-development.fr/tw.html through Securi but the real URL for the second link does not match up, showing a http://www.csrimini.it/tw.html link instead.
Twitter @support representative Troy Holden tells TechCrunch Twitter is on the case, “We’re aware and have sent out password resets for affected users. We’ll monitor the situation in case of further iterations.” In the meantime, don’t click on any suspicious links. Especially if you’re on a cell phone, as it seems to be originating at http://mobile.twitter.com.