Twitter says vulnerability could have exposed direct messages for Android users


A security vulnerability in Twitter for Android could have allowed attackers to access some users' direct messages, the company has disclosed.
Twitter on Wednesday said it has fixed a vulnerability in the Android app that for some users "could allow an attacker, through a malicious app installed on your device, to access private Twitter data on your device (like direct messages), by working around Android system permissions that protect against this." This was "related to an underlying Android OS security issue" on Android OS versions 8 and 9, the company said.
Twitter said it believes 96 percent of Android users have a patch protecting them from the vulnerability, and it doesn't have evidence that attackers actually exploited the flaw, but the company adds it "can't be completely sure" of that. It's sending notifications to the users who may have been affected, requiring them to update the Android app, and promising to identify "changes to our processes to better guard against issues like this."
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.

Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
This disclosure from Twitter comes after the company last month grappled with a massive hack, in which high-profile accounts including those belonging to former President Barack Obama and former Vice President Joe Biden were taken over to promote a Bitcoin scam. The company said that 130 accounts were targeted, and the attackers accessed direct messages on "up to 36" of them, including that of an elected official in the Netherlands.
A free daily email with the biggest news stories of the day – and the best features from TheWeek.com
Brendan worked as a culture writer at The Week from 2018 to 2023, covering the entertainment industry, including film reviews, television recaps, awards season, the box office, major movie franchises and Hollywood gossip. He has written about film and television for outlets including Bloody Disgusting, Showbiz Cheat Sheet, Heavy and The Celebrity Cafe.
-
Cytomegalovirus can cause permanent birth defects
The Explainer The virus can show no symptoms in adults
-
Summer in Seattle: Outdoor dining like nowhere else
Feature Featuring a patio with a waterfront view, a beer garden, and more
-
Ari Aster revisits the pandemic, Adam Sandler tees off again and Lamb Chop gets an origin story in July movies
the week recommends The month's film releases include 'Eddington,' 'Happy Gilmore 2' and 'Shari & Lamb Chop'
-
Dollar faces historic slump as stocks hit new high
Speed Read While stocks have recovered post-Trump tariffs, the dollar has weakened more than 10% this year
-
Economists fear US inflation data less reliable
speed read The Labor Department is collecting less data for its consumer price index due to staffing shortages
-
Crypto firm Coinbase hacked, faces SEC scrutiny
Speed Read The Securities and Exchange Commission has also been investigating whether Coinbase misstated its user numbers in past disclosures
-
Starbucks baristas strike over dress code
speed read The new uniform 'puts the burden on baristas' to buy new clothes, said a Starbucks Workers United union delegate
-
Warren Buffet announces surprise retirement
speed read At the annual meeting of Berkshire Hathaway, the billionaire investor named Vice Chairman Greg Abel his replacement
-
Trump calls Amazon's Bezos over tariff display
Speed Read The president was not happy with reports that Amazon would list the added cost from tariffs alongside product prices
-
Markets notch worst quarter in years as new tariffs loom
Speed Read The S&P 500 is on track for its worst month since 2022 as investors brace for Trump's tariffs
-
Tesla Cybertrucks recalled over dislodging panels
Speed Read Almost every Cybertruck in the US has been recalled over a stainless steel panel that could fall off