Elevate your enterprise data technology and strategy at Transform 2021.
Some Twitter users took advantage of an exploit on Twitter.com that could launch unwanted pop-up windows, and send visitors to third-party websites without their permission, reports the antivirus firm Sophos. The exploit required other users to merely mouse over a link to be activated.
According to Sophos Senior Technology Consultant Graham Cluely, thousands of Twitter accounts featured the exploit. Those include Sarah Brown, wife of the former British Prime Minister, who has over one million Twitter followers. Her account was apparently hacked Cluely created a short video (below) demonstrating the various ways the exploit was used.
To be clear, the exploit only affected Tweets on Twitter.com. Users of third-party Twitter clients like TweetDeck were in the clear. The news comes only a week after Twitter began rolling out a new version of Twitter.com.
As Twitter co-founder Evan Williams mentioned last week, when he unveiled the company’s new website design, most people experience the service through Twitter.com. 78 percent of active Twitter users have used the website in the past month — more than other clients combined.
It’s good that Twitter resolved the issue quickly, but it will need to be extra vigilant about issues on Twitter.com in the future. With its improvements, even more users are going to rely on the website instead of using a third-party client.
VentureBeatVentureBeat's mission is to be a digital town square for technical decision-makers to gain knowledge about transformative technology and transact. Our site delivers essential information on data technologies and strategies to guide you as you lead your organizations. We invite you to become a member of our community, to access:
- up-to-date information on the subjects of interest to you
- our newsletters
- gated thought-leader content and discounted access to our prized events, such as Transform 2021: Learn More
- networking features, and more