Hacked accounts on Twitter are send direct messages to users and stealing their login information. The scam is being accomplished with the use of a worm that uses a link, and a phishing scam to accomplish the evil deed.

Above is a screen shot of the direct message that entices people to click the link.

DO NOT CLICK THE LINK. The link take you to a fake Twitter login page where the hackers steal your login information. Once the hackers have your information they use your account to send out direct messages to all your Twitter friends.

If you see a message like the one above delete it. If you can’t login reset your password, and inform Twitter support.

This isn’t the first worm to hit Twitter. They are currently working to resolve this threat.

A vulnerability has been found and exploited by an "independent researcher" known only as "InfoSec Sellout." InfoSec Sellout claims to have released the worm into a controlled environment and infecting a network of about 1,500 OS X systems and he says that it can be altered to infect both PPC and Intel-class Macs. InfoSec Sellout will let Apple in on the details only after his/her "research is complete."

According to Symantec, a new and malicious worm is spreading (dare I say it?) like wildfire within OpenOffice documents. "The worm can infect Windows, Linux and Mac OS X systems," according to a Symantec Security Response advisory. "Be cautious when handling OpenOffice files from unknown sources."

The worm was first spotted late last month, but at the time, it was not thought to be "in the wild."

Once opened, the OpenOffice file, called badbunny.odg, launches a macro that behaves in several different ways, depending on the user’s operating system.

On Windows systems, it drops a file called drop.bad, which is moved to the system.ini file in the user’s mIRC folder. It also executes the JavaScript virus badbunny.js, which replicates to other files in the folder.

On Apple Mac systems, the worm drops one of two Ruby script viruses in files respectively called badbunny.rb and badbunnya.rb.

On Linux systems, the worm drops both badbunny.py as an XChat script and badbunny.pl as a Perl virus.

Symantec rates the worm as a "medium risk."

That is, only if it is not on your computer