A security vulnerability in Twitter for Android could have allowed attackers to access some users' direct messages, the company has disclosed.
Twitter on Wednesday said it has fixed a vulnerability in the Android app that for some users "could allow an attacker, through a malicious app installed on your device, to access private Twitter data on your device (like direct messages), by working around Android system permissions that protect against this." This was "related to an underlying Android OS security issue" on Android OS versions 8 and 9, the company said.
Twitter said it believes 96 percent of Android users have a patch protecting them from the vulnerability, and it doesn't have evidence that attackers actually exploited the flaw, but the company adds it "can't be completely sure" of that. It's sending notifications to the users who may have been affected, requiring them to update the Android app, and promising to identify "changes to our processes to better guard against issues like this."
The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
This disclosure from Twitter comes after the company last month grappled with a massive hack, in which high-profile accounts including those belonging to former President Barack Obama and former Vice President Joe Biden were taken over to promote a Bitcoin scam. The company said that 130 accounts were targeted, and the attackers accessed direct messages on "up to 36" of them, including that of an elected official in the Netherlands.
-
Political cartoons for October 21Cartoons Tuesday’s political cartoons include a high-profile theft, Epstein files keeping Donald Trump up at night, Halloween costumes and scary GOP stories
-
Five things we learnt from Virginia Giuffre’s memoirThe Explainer Nobody’s Girl recounts ‘harrowing’ details of Giuffre’s suffering as a teenage victim of Jeffrey Epstein and his circle
-
Prince Andrew: a timeline of disgraced royal’s Epstein scandalIn Depth How the Queen’s favourite child went from Falklands War hero to public pariah
-
Gold tops $4K per ounce, signaling financial uneaseSpeed Read Investors are worried about President Donald Trump’s trade war
-
Electronic Arts to go private in record $55B dealspeed read The video game giant is behind ‘The Sims’ and ‘Madden NFL’
-
New York court tosses Trump's $500M fraud fineSpeed Read A divided appeals court threw out a hefty penalty against President Trump for fraudulently inflating his wealth
-
Trump said to seek government stake in IntelSpeed Read The president and Intel CEO Lip-Bu Tan reportedly discussed the proposal at a recent meeting
-
US to take 15% cut of AI chip sales to ChinaSpeed Read Nvidia and AMD will pay the Trump administration 15% of their revenue from selling artificial intelligence chips to China
-
NFL gets ESPN stake in deal with DisneySpeed Read The deal gives the NFL a 10% stake in Disney's ESPN sports empire and gives ESPN ownership of NFL Network
-
Samsung to make Tesla chips in $16.5B dealSpeed Read Tesla has signed a deal to get its next-generation chips from Samsung
-
FCC greenlights $8B Paramount-Skydance mergerSpeed Read The Federal Communications Commission will allow Paramount to merge with the Hollywood studio Skydance
