UPDATE: F-Secure has posted more detailed information.
"Some 24 hours after a worm spread advertising on Twitter, the popular social networking website, a second worm emerged on Sunday. Both worms appear to be created by Mikeyy Mooney, a 17-year-old from Brooklyn, New York.
The first worm emerged on Saturday when Twitter profiles began posting messages which encouraged people to visit StalkDaily.com. The owner of the website, Mikeyy Mooney, told BNO News that he was responsible. "I am aware of the attack and yes I am behind this attack," he said. Mooney said he created the worm to "give the developers an insight on the problem and while doing so, promoting myself or my website."
Later that evening, Twitter said they had resolved the problem. "We've taken steps to remove the offending updates, and to close the holes that allowed this worm to spread," a statement read.
Hours later, a new worm which appeared to be similar to the first one, made its way into the Twitter community. Infected users spread messages such as "Mikeyy is done" and other Twitter users who are logged on to the site and visit the infected profile start doing the same, which makes the worm unusual as no action is required to get infected. It is unclear if Mooney is behind the new attack but a review of the script by BNO News showed it is the same worm from Saturday, except for the fact that it is spreading a new message and is hosted on a different server. It is currently unknown if Mooney may face legal action."
Read more: http://adjix.com/af5t
NetworkWorld Article: http://www.networkworld.com/community/node/40825
The Cross Site Scripting FAQ: http://www.cgisecurity.com/xss-faq.html
The Cross-site Request Forgery FAQ: http://www.cgisecurity.com/csrf-faq.html