Monday , December 6 2021 3:58 AM
Home / Top 5 / Twitter API Flaw Exposed Users Messages to Wrong Developers For Over a Year

Twitter API Flaw Exposed Users Messages to Wrong Developers For Over a Year

The security and privacy issues with APIs and third-party app developers are something that’s not just Facebook is dealing with.

A bug in Twitter’s API inadvertently exposed some users’ direct messages (DMs) and protected tweets to unauthorized third-party app developers who weren’t supposed to get them, Twitter disclosed in its Developer Blog on Friday.

What Happened?

Twitter found a bug in its Account Activity API (AAAPI), which is used by registered developers to build tools to support business communications with their customers, and the bug could have exposed those customers’ interactions

The Twitter AAAPI bug was present for more than a year—from May 2017 until September 10—when the microblogging platform discovered the issue and patched it “within hours of discovering it.”

In other words, the bug was active on the platform for almost 16 months.

What Can Affected Users Do?

Nothing. Yes, you really can’t do anything about your data which has already been gone into wrong hands.

Just like in case of Cambridge Analytica scandal, wherein Facebook requested the developer to delete the data citing its privacy policy, but we all know what happened, Twitter can only ensure that the third-party developers comply with their obligations to delete your information, but can not confirm.

About GOPU

Technology Enthusiast with a keen eye on the Cyber-security and other tech related developments.

Check Also

RAMBleed Attack – Flip Bits to Steal Sensitive Data from Computer Memory

A team of cybersecurity researchers yesterday revealed details of a new side-channel attack on dynamic …