Security researchers are warning of yet another Twitter-related spam attack that attempts to install rogue anti-virus software on the victim's PC.
Websense Security Labs said in a blog post that the emails are designed to imitate a Twitter Password Reset Notification message.
The spam contains a link to a compromised web site that, when clicked on or pasted into the browser, prompts the user to download a malicious executable named 'password.exe'.
The executable turns out to be fake anti-virus software called Protection Center Safebrowser. It has been created to appear genuine by alerting the user that it has discovered malicious files on the desktop.
"What distinguishes this campaign from others is that it displays on your desktop some of the malicious files it installs," said Carl Leonard, senior research manager at Websense Security Labs.
"This makes the attack notification more believable. A business seriously needs to consider a solution that provides real-time security in order to mitigate the threat of the modern day cyber criminal."
Websense said that it has seen about 55,000 instances of this malicious spam email so far.
Australian government to require technology and communications companies to provide access to messages
New bill avoids demanding 'backdoors' in encryption, but includes measures to compel companies to provide access to encrypted communications
Indonesian overclocker Ivan Cupa (with the aid of a lot of liquid nitrogen) achieves record overclock on AMD's latest Threadripper
Ssupermassive black hole is so big it corresponds to four per cent of the galaxy's total mass
Imminent attack will target a single bank with cloned cards used to fraudulently withdraw millions over one weekend