Twitter Circles bug exposes private tweets to everyone (Update: Twitter confirms breach)

Ink

Ink

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
Content source
https://techcrunch.com/2023/04/10/twitter-circle-bug-not-private/
PSA: Do not post your deepest darkest secrets on your Twitter Circle.

Numerous Twitter users are reporting a bug in which Circle tweets — which are supposed to reach a select group, like an Instagram Close Friends story — are surfacing on the algorithmically generated For You timeline. That means that your supposedly private posts might breach containment to reach an unintended audience, which could quickly spark some uncomfortable situations.

I observed this bug when a tweet from someone I follow appeared on my For You timeline, but the retweet button was disabled, despite the person’s account being public. When I clicked on the tweet, it disappeared. I asked the tweeter if that post was intended for their Circle — which I am not in — and they confirmed this was the case.
Click to expand...
“Twitter seems to be outright failing to filter out private content before serving it to users,” Theo Browne, a creator and former Twitch engineer, told TechCrunch.
Click to expand...
After laying off so many engineers, Twitter’s code has not quite been airtight. It’s possible, for instance, to see tweets from people who have blocked you, which poses yet another serious privacy concern.

We all know that we should be careful what we say on the internet. On Twitter, be extra careful — your private musings are no longer as private as you think.
Click to expand...
 
  • +Reputation
  • Like
Reactions: brambedkar59 and Gandalf_The_Grey
Ink

Ink

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
Update: Twitter admits to a security breach that allowed everyone to see Twitter Circle tweets
Now, a month later, Twitter has finally acknowledged the issue and confirmed that a privacy breach did indeed gave everyone access to see tweets that were meant for Twitter Circle. In an email sent to the affected users, Twitter told that “a security incident that occurred earlier this year.”

Furthermore, the company mentioned that the issue “was identified by our security team and immediately fixed so that these tweets were no longer visible outside of your Circle”.
Click to expand...
 
  • Like
  • +Reputation
Reactions: brambedkar59 and silversurfer
You must log in or register to reply here.

Similar threads

silversurfer
    • Like
Now everyone can use Twitter Circle to keep certain posts private
Replies
0
Views
624
News Archive
silversurfer
silversurfer
Bot
    • Like
    • Wow
Security News Trezor's Twitter account hijacked by cryptocurrency scammers via bogus Calendly invite
Replies
0
Views
873
Security News
Bot
Bot
silversurfer
    • Like
Twitter Circle is rolling out to more users worldwide
Replies
0
Views
682
News Archive
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top