Twitter’s TweetDeck resumes after breach

Comment on this story
TwitterBlue REUTERS

San Francisco - Twitter said its TweetDeck tool for organising and tracking tweets has resumed operation after experiencing a security issue.

The service had earlier been taken down following a breach, the San Francisco-based microblogging company said in a post on its @TweetDeck Twitter account.

An earlier tweet said the company had fixed the issue and Twitter later added that it had verified the security bug had been resolved.

Twitter didn’t describe the vulnerability and didn’t immediately respond to a request for further comment.

Numerous companies have been hit by technology security issues recently.

Restaurant chain PF Chang’s China Bistro said yesterday it was investigating whether it was the target of a data breach.

Hackers previously wreaked havoc with Target and Neiman Marcus, exposing the credit-card data of tens of millions of customers.

In March, Sally Beauty, a seller of hair and beauty products, said data from customers’ payment cards had been illegally accessed and may have been stolen.

TweetDeck, one of the biggest Twitter client programs, which lets people use the microblogging service via another program, was bought by Twitter in May 2011 for about $20 million.

The vulnerability in TweetDeck appeared to be a cross-site scripting bug, or XSS, a common computer programming error that lets hackers inject commands into Web pages and force them to do things they normally wouldn’t, according to security experts.

In this case, the most obvious damage was mischief makers exploiting the security hole to post pop-up messages to users’ screens.

Cross-site scripting vulnerabilities can range from serious weaknesses that expose sensitive information to minor flaws that result in harmless annoyances to users.

Hackers exposed a similar vulnerability on Twitter in 2010.

In that instance, the bug was also used to show harmless pop-up messages on users’ screens. - Bloomberg News

sign up

Comment Guidelines

  1. Please read our comment guidelines.
  2. Login and register, if you haven’ t already.
  3. Write your comment in the block below and click (Post As)
  4. Has a comment offended you? Hover your mouse over the comment and wait until a small triangle appears on the right-hand side. Click triangle () and select "Flag as inappropriate". Our moderators will take action if need be.

  5. Verified email addresses: All users on Independent Media news sites are now required to have a verified email address before being allowed to comment on articles. You are only required to verify your email address once to have full access to commenting on articles. For more information please read our comment guidelines