Do Click: twitter vulnerability
If you are at this page, you probably clicked on a "Do Click" link on twitter. Well done - you know how to follow instructions. If you were one of those rebellious types, you might have clicked on the "Don't Click" link which is also propagating on there. Fortunately you aren't like that. If you were, you would probably have been the victim of a cross-site scripting vulnerability (explanation at Coding Horror ). This runs some Javascript which starts posting messages in your name on twitter. In this case the message seems relatively harmless - it simply posts another copy of itself to try to spread itself to other twitter users. But, not having clicked on it, I can't say for sure that it is innocuous. In general it's dangerous to click on this kind of thing. One way around this is to insist on using the 'preview' feature on tinyurl. Any tinyurl link (such as the one that's being passed around with the "Don't Click" message) ...