Twitter Data Leak Exposes Business Clients

Twitter has contacted its business clients to warn them of a potential breach of their data.

Twitter data leak

It said that email addresses, phone numbers and the last four digits of card numbers may have been accessed by others, thanks to a technology snafu which exposed the information.

It meant that billing information viewed on ads.twitter.com or analytics.twitter.com may have been exposed in the browser’s cache.

The social network first became aware of the incident on May 20 and said it took immediate action to remediate and notify any affected customers.

The snafu is not thought to have affected consumer users of the service, according to the BBC.

This isn’t the first time something like this has happened on the social platform.  

Around a month before this incident, Twitter warned users that non-public information may have been stored in their Firefox browser’s cache.

“This means that if you accessed Twitter from a shared or public computer via Mozilla Firefox and took actions like downloading your Twitter data archive or sending or receiving media via Direct Message, this information may have been stored in the browser’s cache even after you logged out of Twitter,” it said at the time.

Although it’s unclear how many businesses were affected by the May breach, experts generally agreed that incidents of this kind are likely to have a limited impact on customers’ data security and privacy.

“The vector here requires physical access to the device, so it may not be as exploitable as an alert like this might indicate,” explained Edgescan product architect, David Kennefick.

“What Twitter has done is update its headers to include no-store and no-cache, which disables storing data from a website locally.”

Tripwire senior security researcher, Craig Young, added that the incident could still provide a “teachable moment” regarding shared computers.

“Whether you regularly rely on libraries or internet cafes for access or just need to print the occasional boarding pass from a hotel lobby, there can be a risk of exposing personal data,” he argued.

“Ideally, the best solution is to simply avoid using shared computers when entering or accessing personal data but this is not always an option. The next best solution is to bring your own web browser and take it with you when you go.”

We’re Team Metalogic

We’re Team Metalogic, a managed IT support provider offering outsourced IT services  to SME’s across the UK. With a proven track record, with extensive experience and a full portfolio of industry accreditations & certifications.

Our stress-free solutions don’t complicate things, in fact, they improve efficiency and save money.

News source: https://www.infosecurity-magazine.com/

Share this page

  •  
  •  
  •  

10 steps to cyber security

Protecting your data is crucial: any data lost or attacked compromises you and your organisation.

Find out more

What is passwordless authentication and is it right for your organisation?

Passwordless authentication is any way in which a user’s identity can be verified without the need for a password.

Find out more

New team member, Calum Challenger, excels in first few months with Team Metalogic

Calum Challenger joined Team Metalogic at the beginning of 2021 in the role of Junior Service Desk Engineer. Since then, he’s excelled in his first few months with the company.

Find out more

Microsoft for the Modern Workplace

Would you describe your workplace as modern?

Find out more

Wondering if we have the right solution for you?

We’d love to talk

Request a call back

About Cookies On This Site
We use cookies to personalize and enhance your experience on our site and improve the delivery of ads to you. Visit our Cookie Policy to learn more. By clicking accept", you agree to our use of cookies.