Categories: News

Twitter Fixed a Major Security Bug; the Bug affected millions of accounts

Twitter’s pattern of making blunders and fixing them when enough damage has already been inflicted is continued. This year, another vulnerability was found in the databases of Twitter which caused potential privacy threats to private and pseudonymous accounts, putting their anonymity in jeopardy.

While the issues were in front of Twitter for a long time, Twitter just addressed them yesterday(06/08/22) in a concise article about the bug and claims that they have fixed the vulnerability.

“We want to let you know about a vulnerability that allowed someone to enter a phone number or email address into the log-in flow in the attempt to learn if that information was tied to an existing Twitter account and, if so, which specific account.” The article stated.

At the start of this year, Twitter came to know about the bug, claiming that it was fixed there and then, and their June 2021 update probably caused it.
“At that time, we had no evidence to suggest someone had taken advantage of the vulnerability.” Twitter claimed.

After six months of the bug being fixed, a report from a bounty bug researcher suggested that 5.4 million private and pseudonymous accounts were listed on a dark website and included “celebrities and companies.”

“We will be directly notifying the account owners we can confirm were affected by this issue. We are publishing this update because we aren’t able to confirm every account that was potentially impacted, and are particularly mindful of people with pseudonymous accounts who can be targeted by state or other actors,” said Twitter.

Twitter ended the article acting like a big brother and advised people to enable a two-factor-authentication process to protect their accounts from future threats.

A similar bug appeared in 2020, where the direct message details were exposed instead of just the account owner’s identity. The people using Android IOS 8 and 9 were affected by this bug. Twitter claimed that they fixed the bug, and no proof of exploration of the information was found.

Sponsored
Techjuice Team

Share
Published by
Techjuice Team

Recent Posts

Yahoo Surprises Users with Its Latest Android Launcher

Third-party apps have long been a staple of the Android ecosystem, but their appeal has…

1 hour ago

Phase-II Review of PTCL-Telenor Deal Finalized by CCP

ISLAMABAD: The Competition Commission of Pakistan (CCP) has completed its Phase-II review of Pakistan Telecommunication…

1 hour ago

Xiaomi’s SU7 Achieves New Production Record, Driving Q3 Growth

Xiaomi has shattered records by producing 100,000 vehicles in just 230 days. This is nearly…

3 hours ago

Teachers Can Now Access OpenAI’s Free AI Course

OpenAI, in collaboration with nonprofit organization Common Sense Media, announced on Wednesday the launch of…

4 hours ago

WhatsApp-Inspired Updates Under Testing in Google Messages

Google is exploring a revamped image-sharing interface in its Messages app, taking cues from WhatsApp…

4 hours ago

Create AI Video Backgrounds with YouTube Shorts’ Dream Screen

When it comes to online video streaming, YouTube is among the most well-known options. Every…

4 hours ago