Twitter got hit with a minor data breach incident which social networking believed linked to alleged state-sponsored attack. Twitter stated that it discovered evidence of the bug being tainted to steal and access users ‘revealed information. The influenced support form in question was used by account holders to establish contact with Twitter about issues with their account.
Exposed in mid of November, the support form API bug revealed significantly less personal information, together with the country code of users ‘contact numbers related with their Twitter account, and whether or not their account had been locked. As of now company has denied providing further details about the incident or a rough estimate for the number of accounts impacted potentially but states they believe that the attack might have ties to state-sponsored actors.
Twitter ensured its users’ that the issue does not reveal any personal data or fill contact numbers of users. The social networking site states that they had addressed the issue within a day and users’ aren’t expected to take any action on this matter. When the company got to know about the incident, it initiated investigating the backgrounds and origins of the breach to provide users’ with as much information as possible, and also updated law enforcement.
Twitter took action actively and directly notified the users who have been impacted by the incident. Like other social networking platforms, Twitter also got hit by a number of security incidents this year. In May, Twitter urged all its revered 330 million users to change their passwords after a software glitch accidentally revealed its users’ account passwords by storing in text on an internal log.
In month of September, a mistake in Twitter’s Account Activity API exposed its some user’s direct messages and protected tweets to unauthorized third part app developers who weren’t meant to get them.
By the end of December, Twitter again got hit by another software fault that enabled unapproved their party apps to access and thereby read users’ direct messages, even when the users were told that they would not.
Feeling like sharing anything regarding this article? Comment below to express your views about it.