Leave a comment

Major security flaw brings down TweetDeck

Major security flaw brings down TweetDeck

TweetDeck, an app and site that lets you manage your Twitter account, has been attacked.

A vulnerability accidentally found by a teenager opened up that app to hackers.

An Austrian teenager named Florian (he prefers to go by Firo) says he started it all. Firo, who declined to share his last name, citing privacy concerns, said he figured out Wednesday morning that "&hearts" makes a "♥" symbol in the coding language HTML.

Chatting to CNN on Twitter, he said he was just experimenting when he discovered that using a "♥" created an opening in TweetDeck's software, allowing for someone to inject computer program commands via a tweet. Without even meaning to, Firo stumbled on a software bug.

"It wasn't a hack. It was some sort of accident," he said.

After posting his accidental find, hackers used the flaw to hijack TweetDeck.

tweetdeck flaw

The message from Twitter user @derGeruhn was shared more than 37,000 times. Many undid the retweet action trying to peel back the annoyance. People around the world were affected.

TweetDeck has announced a simple fix - log out and log back in again. That should plug the hole created by this bug.

What's all this about Twitter anyway? Find out all about Twitter here.

Amazon Prime now offers 1 million streaming songs
Previous Happening Now

Amazon Prime now offers 1 million streaming songs

Hackers hit Evernote and Feedly, hold them for ransom
Next Happening Now

Hackers hit Evernote and Feedly, hold them for ransom

View Comments ()