Skip to main content

Update your Twitter app right now if you’re on Android

Twitter says it has patched a vulnerability inside its Android app that could have potentially let malicious actors view information of private accounts and take over profiles through an intricate back-end process. If a hacker managed to exploit the loophole, they could send direct messages and tweets on the target account’s behalf.

The social network claims so far it hasn’t discovered any affected user, nor found evidence of whether a third-party service has taken advantage of the bug. However, Twitter is reaching out to the people whose details may have been exposed. It’s unclear how long the vulnerability was left out in the open. The issue is not present on Twitter’s iOS app.

Recommended Videos

Twitter is now rolling out an update to its Android app. So if you’re an Android user, you should head over to the Play Store and install it immediately irrespective of whether Twitter contacted you.

“We don’t have evidence that malicious code was inserted into the app or that this vulnerability was exploited, but we can’t be completely sure so we are taking extra caution. We have taken steps to fix this issue and are directly notifying people who could have been exposed to this vulnerability either through the Twitter app or by email with specific instructions to keep them safe,” the company said in a blog post.

Since the method for abusing the glitch wasn’t all that straightforward, it’s unlikely a lot of users have been impacted due to this. Twitter essentially left a sensitive storage area of its app unprotected. By either through another third-party app or an unverified online download, a hacker could, in theory, exploit that to insert a piece of malicious code into where Twitter stores your private information on your phone and misused that access to fetch your personal data as well as post messages and tweets from your profile.

This latest security flaw is, in a lot of ways, similar to the one that happened about a month ago. On November 25, Facebook and Twitter said private data of “hundreds of their users” was compromised through malicious third-party Android apps. The breach, the two social media companies claimed, was caused because there wasn’t sufficient isolation between various software developer kits within a single app on Android.

Shubham Agarwal
Shubham Agarwal is a freelance technology journalist from Ahmedabad, India. His work has previously appeared in Firstpost…
Twitter ‘melts’ as it becomes first social app to launch a presidential bid
A stylized composite of the Twitter logo.

Elon Musk’s plan to make Twitter the first social media platform to host the launch of a U.S. presidential bid didn’t get off to the best start.

The idea was to launch a Twitter Spaces session with Republican hopeful Ron DeSantis at a scheduled time on Wednesday evening, but when the event was supposed to start, the online audience waiting patiently in the audio-only Space was met with a sudden screeching sound.

Read more
Don’t update your Apple Watch unless you want this ugly display bug
The Apple Watch Ultra with the Solo Loop band attached.

Last week saw the launch of watchOS 9.5, a relatively small update for Apple Watches that added the Pride Celebration watch face as well as fixed a few unspecified bugs. However, the update seems to be causing an irritating display issue for many users.

Posted to the subreddits r/AppleWatch and r/watchOS, users are reporting that the update has added a noticeable green/gray tint to their screens that changes the colors of the display and makes the usually crisp OLED screen look washed out. You can see what it looks like in the photos below.

Read more
Sorry, but you’re all wrong — any Pixel 7 is a great buy
The Google Pixel 7a in a person's hand.

I bet you’re worried about buying a Google Pixel 7, Pixel 7 Pro, or Pixel 7a, aren’t you? There are some nasty horror stories about terrible reliability out there, and they’re enough to send many potential buyers screaming into the waiting arms of a Samsung Galaxy S23 or an iPhone 14 Pro, each ready to provide comfort with their solid dependability.

Well, at the risk of sounding smug, I’ve used all three and had no serious issues with any of them. And how’s this for a daring follow-up statement: When someone asks me if any are worth buying, I’ll say yes. You heard me right, I think you should buy a Pixel 7 phone.

Read more