Twitter admits bug exposed some Android users' protected tweets for years

Doris Richards
January 20, 2019

Anyone who updated the email address linked to their account between November 2014 and January 2019 could have had messages exposed, it said.

"We've become aware of an issue in Twitter for Android that disabled the "Protect your Tweets" setting if certain account changes were made", the San Francisco-based firm explained, in a statement.

The bug also didn't impact users of their Web or iOS clients, although, if members changed their account's email address from an Android client, and then used other clients, they might also be affected.

"We've informed people we know were affected by this issue and have turned "Protect your Tweets" back on for them if it was disabled," Twitter said. "We're very sorry this happened and we're conducting a full review to help prevent this from happening again", the company said.

In May a year ago, Twitter asked its 336 million users to change their passwords after it discovered a bug that stored passwords in plain text in an internal system.

Another bug in Twitter's platform for third-party app developers exposed some Direct Messages (DMs) from almost 3 million users to outsiders, the micro-blogging platform admitted in September.

While it's commendable that Twitter has made this issue known and tried to fix it as soon as possible, it won't be much comfort to anyone who's private Tweets have been made public.

Now it's Twitter's turn, with the social network acknowledging today an issue affecting the "Protect your Tweets" feature associated with some accounts.

Twitter is already under investigation by the Irish Data Protection Commission (DPC) for turning down a researcher's request for data about how he is tracked when he clicks on short links in tweets.

Other reports by Iphone Fresh

Discuss This Article