Report: Twitter’s Security Problems Were Self-Inflicted

Posted on July 27, 2020 by Paul Thurrott in Social with 4 Comments

Twitter Talks Up Its Move to PWA

A Bloomberg report claims that employees warned Twitter about security issues at the service for at least five years to no avail. And when the service was recently hacked, those employees were not surprised.

The report cites four former Twitter employees and several contractors.

According to the report, there are over 1,500 people who reset Twitter accounts, review security breaches, and respond to content violations, and only some of them actually work for the social networking service. Worse, there are multiple reported instances in which contractors accessed the personal data of celebrities and other Twitter users, including their email addresses and phone numbers.

Employees began warning Twitter CEO Jack Dorsey about these breaches as long ago as 2015, and continued right up until earlier this month when dozens of high-profile Twitter accounts were hijacked a as part of a Bitcoin-based scheme. And it was Twitter’s lax control over the people who can access sensitive user data that led to the success of the attack.

Twitter denies the charges.

“We have no indication that the partners we work with on customer service and account management played a part [in the attack],” a Twitter statement claims. That said, Mr. Dorsey told investors that Twitter could have done more. “We fell behind, both in our protections against social engineering of our employees and restrictions on our internal tools,” he admitted.

Tagged with

Elevate the Conversation!

Join Thurrott Premium to enjoy our Premium comments.

Premium member comments on news posts will feature an elevated status that increases their visibility. This tab would allow you to participate in Premium comments with other premium members. Register to join the other Premium members in elevating the conversation!

Register or Subscribe

Join the discussion!

BECOME A THURROTT MEMBER:

Don't have a login but want to join the conversation? Become a Thurrott Premium or Basic User to participate

Register