Today, Twitter released a statement that says the platform has suspended “a large network of fake accounts,” as well as many others “located in a wide range of countries,” for abusing an API feature that allowed them to match phone numbers to usernames.
Here’s the official tweet.
“We observed a particularly high volume of requests coming from individual IP addresses located within Iran, Israel, and Malaysia,” the Twitter security bulletin says. “It is possible that some of these IP addresses may have ties to state-sponsored actors,” the post continued.
Security researcher Ibrahim Balic found that a bug in Twitter’s Android app let him submit millions of phone numbers through an official API, which returned any associated user account.
Excerpt from today’s TechCrunch report:
The feature is intended, if you have enabled it, to let friends who have your number look up your Twitter handle. But obviously submitting millions of numbers goes “beyond its intended use case.”
If you had turned this feature off, you weren’t affected by this bug. Fortunately for users in the EU this was opt-in there. But for the rest of the world it’s opt-out — so if you had a phone number associated with your account, you may have been affected.
Furthermore, the phone numbers include those provided for purposes of two-factor authentication, so those outside the EU may have been vulnerable to this exploit without realizing it.
The Trump White House says it is working with U.S. technology companies to develop software for next-generation 5G telecommunications networks, in an effort to reduce reliance on China’s Huawei. Companies involved in the effort include Dell, Microsoft and AT&T, White House economic advisor Larry Kudlow said.
“In this day and age, you can trace everyone’s movements with big data,” Li Lanjuan, an adviser to the National Health Commission, said in an interview with state television. Government officials in China are using big data to track the location and movement of people who are known to be infected with the Wuhan coronavirus, […]
• Coronavirus, which WHO declared a global health emergency, threatens to disrupt Chinese manufacturing The deadly virus outbreak that began in Wuhan, China continues to spread and claim lives around the world. At this time, still, the vast majority of infected patients and deaths are in mainland China, Hubei province. The epidemic is also impacting […]
Google and Microsoft keep attacking, but when you’re talking cloud-based computer systems, you’re still really only talking about one name: Amazon. Amazon Web Services (AWS) is still the 800-pound gorilla of the cloud market, and getting accredited as an AWS Certified Solutions Architect is a big deal for hiring managers and those getting hired. You […]
For the owner of an anxious dog, coming home to a stray poop or a shredded pillow after a long day at work may be annoying, but that’s actually on the low end of potential problems. Some dogs get so upset by the boredom, loneliness and stress of being on their own that they end […]
We’ve all got our hands full. And we’re not talking about tight schedules, full task lists and other assorted day-to-day hassles of life here. No, we’re talking literally. With keys, papers, purses, and wallets, devices like smartphones, cameras, laptops and tablets, not to mention all that hyper-specific stuff each of us needs every day, our […]