Twitter users were urged to switch to third party clients overnight after malware rendered Twitter.com useless and began posting links to malicious sites from within user accounts.
The microblogging site said this morning that it had fixed the vulnerability.
Hackers had used the Javascript command "onMouseOver" to insert malicious code into messages being displayed on Twitter.com.
Thousands of users re-circulated the exploit or were redirected to pages containing further malicious code merely by moving their mouse over a link on the page.
"The Twitter website is being widely exploited by users who have stumbled across a flaw which allows messages to pop-up and third-party websites to open in your browser just by moving your mouse over a link," said Graham Cluley, an engineer at IT security firm Sophos had posted.
"Messages are also spreading virally exploiting the vulnerability without the consent of users."
Cluley said there was a strong potential for "cybercriminals to redirect users to third-party websites containing malicious code, or for spam advertising pop-ups to be displayed."
Users were urged to use third party clients rather than Twitter.com until Twitter blocked the onMouseOver Javascript command.
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
iTnews State of Security Breakfast
iTnews State of Data & AI Breakfast
Forrester's AI Forum Sydney
The 2026 iAwards
.jpg&w=120&c=1&s=0)
Integrate 2026
_(1).jpg&h=140&w=231&c=1&s=0)
