Twitter warns direct messages were exposed

Twitter is in full damage control mode after disclosing that it may have inappropriately exposed some unlucky twits' private tweets and direct messages to strangers.

Twitter has told an undisclosed number of users their private messages may have been leaked to third-parties for more than a year.

The 280-character shoutfest admitted on Friday that a bug present in one of its APIs from May 2017 to September 10, 2018, could have caused some messages to leak to certain third-party programmers. The biz claimed less than one per cent of its users would be affected, but seeing as Twitter is used by roughly 335 million people a month, you do the math. (OK, perhaps as many as 3.4 million.)

The software “bug”, which has since been fixed, involved direct messages between users and businesses that offer customer services via Twitter. Affected users are being notified via a message that appeared when opening the app or logging on to Twitter's website. "The issue has persisted since May 2017," Twitter said.

The company said it had resolved the issue immediately upon discovering it, on 10 September.

The network has 335m monthly active users, according to the firm’s latest figures, published in July. Twitter said not all direct messages, which are supposed to be private, unlike normal tweets, were at risk, just those between users and companies - such as an airline.

"We haven't found an instance where data was sent to the incorrect party," the company said. "But we can't conclusively confirm it didn't happen, so we're telling potentially impacted people about the bug.

Netwise 22.09.18