It seems that Twitter’s initial attempt to block accounts
and remove the malicious payload from its hosts in the cloud failed lamentably.
The worm that infects systems via spam tweets simply changed
its base. The tinny URLs displayed in the automatically generated feeds are now
directing to other Web pages, allegedly displaying the same “My home video :)”,
which is none other than the same variant of Koobface.
Otherwise said, “E.T. call different homes”, turning the entire thing into some sort of tweetsted “hide and seek” security game,
as you can see below.
The nasty part is that unless you don’t have a security
solution up and running to block Koobface in the first place, chances are for
you to end up with a compromised system and a suspended Twitter account.