A security flaw on Twitter has been exposed that sounds pretty funny, unless you are a goat who has been the victim of a sex attack that is.

A Twitter worm created random Tweets beginning with WTF that contained a bogus link which, in turn, created goat-sex themed tweets.

"Clicking on the WTF link would take you to a webpage which contained some trivial code which used a CSRF (cross-site request forgery) technique to automatically post from the visitor's Twitter account", said Graham Cluley from security firm Sophos.

"All the user sees if they visit the link is a blank page, but behind the scenes it has sent messages to Twitter to post from your account. The messages obviously couldn't be sent if you weren't logged into Twitter at the time you clicked on the link".

Twitter stated, via its official blog: "A malicious link is making the rounds that will post a tweet to your account when clicked on. Twitter has disabled the link, and is currently resolving the issue. We’ve fixed the exploit and are in the process of removing the offending Tweets".