URL-shortening sites used to infect Twitter

Security researchers have warned that cybercriminals are using URL-shortening services to infect the PCs of members of social network Twitter.

Sites such as TinyURL and Bit.ly are being used to disguise links to websites that have either been specially created or hijacked to host malware.

The tactic is nothing new, as Web User previously reported in June this year.

Security firm Symantec said that the criminals also look at the most-discussed topics on Twitter and include related keywords to ensure that they have a good chance of infecting unsuspecting Twitter members.

Ben Nahorney, senior information developer at Symantec, said: "With the huge amount of fake celebrity accounts, users often do not know who they are interacting with, making clicking on a URL a huge leap of security faith."

However, Symantec did not point the finger at Twitter or any of the URL-shortening services.

"Obviously Twitter and the URL-shorting services are not at fault here; moreover it is simply another case of malicious attackers using a neutral technology as a means to their deceptive ends," Nahorney said.

Nahorney recommended that Internet Explorer and Firefox users install add-ons that check shortened URLs and where they actually lead to before allowing you to click on them.