Twitter has disclosed a security incident involving the abuse of one of its official API features. Twitter admitted a flaw in its backend systems was exploited to discover the cellphone numbers of potentially millions of users en masse, which could lead to their de-anonymization through the exploitable API which has already been abused by systems in Iran, Israel and Malaysia.
Experts Comments
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Ilia Kolochenko, Founder and CEO, provides expert commentary at @Information Security Buzz.
"Often they are riddled with a full spectrum of OWASP API Security Top 10 issues...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-analysis-on-attacker-used-twitter-api-to-match-usernames-to-passwords
Facebook Message
@Ilia Kolochenko, Founder and CEO, provides expert commentary at @Information Security Buzz.
"Often they are riddled with a full spectrum of OWASP API Security Top 10 issues...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-analysis-on-attacker-used-twitter-api-to-match-usernames-to-passwords