This one, described on a PandaLabs blog dumps malware that steals financial info, PIN numbers and passwords.
The campaign is evidently being run from new Twitter accounts, rather than than from the thousands of hacked legit Twitter accounts for sale on the black market.
The keylogger drops in via a Java file drive-by, leading security firm F-secure to ask if "you really need Java in your browser."
Disabling Java is a good first step, but even so, the best first step remains to stop and think before you click on a link in a tweet of an e-mail.
Then don't click on it.