Twitter bug may have sent users' Messages to unknown developers
San Francisco, Sep 22 : A bug in Twitter's platform for third-party app developers exposed some Direct Messages (DMs) from nearly 3 million users to outsiders, the micro-blogging platform has admitted.
The bug ran from May 2017 and within hours of discovering it on September 10, Twitter said it fixed the bug to prevent data from being unintentionally sent to the incorrect developer.
"The bug affected less than 1 per cent of people on Twitter. The bug may have caused some of these interactions to be unintentionally sent to another registered developer," Twitter said in a blog post on Saturday.
"In some cases, this may have included certain DMs or protected tweets, for example a Direct Message with an airline that had authorised an Account Activity API (AAAPI) developer."
The Account Activity API allows registered developers to build tools to better support businesses and their communications with customers on Twitter.
Twitter currently has over 336 million users and one per cent means nearly 3 million of those were affected. If your business authorised a developer using the AAAPI to access your account, the bug may have impacted your activity data in error.
"We're very sorry this happened. If your account was affected by this bug, we will contact you directly through an in-app notice and on twitter.com," said the company.
In May, the micro-blogging platform asked its 336 million users to change their password across its services after it discovered a bug that stored passwords in plain text in an internal system.
Twitter said it found no sign that hackers accessed the exposed data but advised users that they should enter a new password on all services where their current password has been used.
Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.
Allahabad HC expresses dissatisfaction over probe in 2009 custodial death case
Prayagraj (PTI): The Allahabad High Court has expressed dissatisfaction over the investigation and state's evidence in a 2009 custodial death case in Mainpuri district of Uttar Pradesh.
A bench of justices Atul Sreedharan and Siddhartha Nandan warned that if relevant videography and photographs are not placed before the court, the only option left to it will be to take assistance of CBI to recover the vital evidence.
The order was passed while hearing a PIL filed by Association for Advocacy and Legal Initiatives.
The court, in its order dated April 7, noted that crucial facts including video and photo evidence of the incident are missing.
The court observed, "In the event, by the next date of hearing, the videography and photographs relevant in this case are not placed before this court, the only other option left to this court is to take assistance of the central bureau of investigation (CBI) to recover vital evidence in this case which shall be considered on the next date of hearing."
"The chain of evidence is unclear casting doubt on the fairness of the investigation," the court added.
The court also directed the then sub-divisional magistrate (SDM) Karmendra Singh of Mainpuri to file his affidavit strictly in terms of the order dated February 9, failing which, it said, it shall consider to take appropriate action against him.
The court asked Singh to give a precise answer on the fate of the videography recording which was done in his presence.
The court fixed May 5 as the next date of hearing in the matter.
