A bug that allowed Twitter users to spy on protected accounts, reading supposedly protected Tweets via SMS or push notifications, regardless of whether users had approved them as followers, has been removed by the social site.According to Twitter Blog, they are alerted to and fixed a bug in our system that, for 93,788 protected accounts under rare circumstances, allowed non-approved followers to receive protected tweets via SMS or push notifications since November 2013.
As part of the bug fix, they are removed all of these unapproved follows, and taken steps to protect against this kind of bug in the future.
The scope of this bug was small in terms of affected users, that does not change the fact that this should not have happened and they are emailed each of these affected users.
Twitter said that the bug had been brought to its attention by a member of the white-hat security community. Lord said that he wanted to thank the unnamed security tipster for, “helping us discover and diagnose the bug,” commenting that, “hese folks help us keep Twitter safe for everyone.”
No comments:
Post a Comment