Twitter Security Flaw Possibly a Hole For a Year

By ServerWatch Staff (Send Email)
Posted Jan 26, 2010


A recently discovered security flaw in Twitter's Flash-based Web site widget may have allowed attackers access to the login credentials of any Twitter user. According to Read Write Web, the problem involves a known vulnerability in Adobe's Flash programming language - Adobe informed programmers how to address the vulnerability years ago.


Foreground Security says the Twitter site may have been open to attack from hackers for over a year.

"According to a post on the Twitter Status blog, the company has exercised "an abundance of caution" in disabling access to the widget as they have not yet heard about any accounts being affected by the reported vulnerability. However, says Bailey, there's no way of know if any users were ever impacted by the issue and, if so, how many. "That is one of the big scary things; if they are being attacked, there is almost no way to find out short of a very close examination of the server logs or client logs, which generally aren't stored," he said."

Read the Full Story at Read Write Web

Page 1 of 1

Tags: Twitter

Comment and Contribute

Your name/nickname

Your email

(Maximum characters: 1200). You have characters left.