X

Twitter fixes Android vulnerability that could have exposed account info

Hackers may have been able to access direct messages, protected tweets and location information.

abrar-al-heeti2
abrar-al-heeti2
Abrar Al-Heeti Video producer / CNET
Abrar Al-Heeti is a video host and producer for CNET, with an interest in internet trends, entertainment, pop culture and digital accessibility. Before joining the video team, she was a writer for CNET's culture team. She graduated with bachelor's and master's degrees in journalism from the University of Illinois at Urbana-Champaign. Though Illinois is home, she now loves San Francisco -- steep inclines and all.
Expertise Abrar has spent her career at CNET breaking down the latest trends on TikTok, Twitter and Instagram, while also reporting on diversity and inclusion initiatives in Hollywood and Silicon Valley. Credentials
  • Named a Tech Media Trailblazer by the Consumer Technology Association in 2019, a winner of SPJ NorCal's Excellence in Journalism Awards in 2022 and has three times been a finalist in the LA Press Club's National Arts & Entertainment Journalism Awards.
See full bio
Abrar Al-Heeti
twitter-logo-app-phone-2

Twitter has rolled out a fix for a vulnerability that could have let hackers control accounts. 

 Graphic by Pixabay/Illustration by CNET

Twitter says it recently fixed a vulnerability within Android that may have allowed bad actors to see private account information or to control accounts. Before the fix was implemented, hackers may have been able to insert malicious code into restricted storage areas of the app to access information such as direct messages, protected tweets and location information, Twitter said in a blog post.

"We don't have evidence that malicious code was inserted into the app or that this vulnerability was exploited, but we can't be completely sure so we are taking extra caution," the company wrote.

Twitter is directly notifying people who may have been exposed to the vulnerability via the Twitter app or email with instructions on staying safe. If users aren't sure what to do, the company recommends they update to the latest version of Twitter for Android. Twitter for iOS wasn't impacted.

screen-shot-2019-11-29-at-15-20-49.png
Watch this: Twitter won't delete inactive accounts, Black Friday sales going strong

The new Android Auto is easier on the eyes and easier to use

android-auto-redesign-35
android-auto-redesign-3
android-auto-redesign-45
+27 more
See all photos

Mobile Guides

Phones

Foldable Phones

Headphones

Mobile Accessories

Smartwatches

Wireless Plans