Twitter Vulnerability Discovered

by Frank Jovine on 01/23/2010 in Security, Security Info

This vulnerability could have opened a door for hackers to steal user login information. This flaw was discovered by a security researcher who has asked the social media company to fix the problem.

Twitter has temporarily disabled one of the features on its website after a security researcher warned of a programming flaw that left the login credentials of its users vulnerable to hackers.

Twitter co-founder Biz Stone said in an email that the company had temporarily cut off access to a feature that lets users display Twitter updates on their websites by using Flash technology.

“Our team has disabled the Flash widget while we look into the problem,” Stone said.

Mike Bailey, a senior security analyst with Foreground Security of Orlando, Florida, said that the problem exploits a widely known vulnerability in Adobe Systems Inc’s (ADBE.O) Flash programming language.

The microblogging site’s huge popularity has made it a prime target for hackers looking to spread malicious software to Twitter’s millions of users.

A hacker last month briefly hijacked the Twitter site and redirected it to one that claimed to represent a group calling itself the Iranian Cyber Army. That high-profile attack — by a perpetrator who stole credentials to the account that Twitter uses to route its traffic — did not compromise credentials of any Twitter users.

  • Share/Bookmark

8 Responses to “Twitter Vulnerability Discovered”

  1. Teasastips

    Jan 23rd, 2010

    Sent it to FriendFeed, and Hootsuite–thx!

  2. Mike Kopiband

    Jan 25th, 2010

    being on the top, you will always face rivalry, people and companies always looking in search to find some weaknesses in twitter, but not realizing the fact that this will strengthen the site even more.

  3. Andrew@BloggingGuide

    Jan 25th, 2010

    This should really be looked into as soon as possible if they don’t want users to leave twitter. Privacy is important. Good thing the hacker last month didn’t touch users accounts. Will definitely retweet this.

    • Frank Jovine

      Jan 26th, 2010

      Andrew.

      There will be more of the same this year as many security forms think that both Facebook and Twitter will be hit hard with exploits.

  4. Twitter Flash Update Vulnerability Discovered « onecoolsitebloggingtips.com

    Jan 25th, 2010

    [...] Read the full article at TechJaws. [...]

  5. lunaticg

    Jan 27th, 2010

    Thanks for bringing this up. Security is the most important thing in whatever thing we do nowadays. Twitting this article to the rest of my friends.

    • Frank Jovine

      Jan 27th, 2010

      Lunatic,

      Thank you for sharing and look forward to reading more comments from you.