Last year, we observed a widespread targeted attack on Twitter which optimized a malware campaign by automatically creating thousands of tweets with a trending topic item and a link to a malicious site.  Clicking on any of the links in the attack rendered the typical fake security software website designed to trick unsuspecting victims into installing Rogueware on their computer.   Today, we see that the malware problem still exists on Twitter, but this time Rogueware attacks have taken a backseat to PPC (Pay-Per-Click) fraudware.

    Tweet leads to Pay Per Click malware
Tweet leads to Pay Per Click malware

Clicking the link (pictured above) will lead victims to an executable file, which when accessed will create thousands of connections in the background to sites which generate ad revenue for the cyber criminals.

I went ahead and put together a quick demonstration video of the malware in action: