Skip to main content
  1. Home
  2. Social Media
  3. Computing
  4. News

This Twitter vulnerability may have revealed owners of burner accounts

Anita George
By

Twitter recently announced the existence of a security vulnerability that poses a particular risk for anonymous and pseudonymous Twitter accounts.

On Friday, the popular social media platform published a blog statement describing the nature of the security vulnerability, which, if exploited, could let someone send contact information (phone numbers, email addresses) to Twitter’s systems, which would then “tell the person what Twitter account the submitted email addresses or phone number are associated with, if any.” Essentially, with this bug, if you had someone’s contact information, you could use it to figure out which accounts on Twitter were theirs.

And while Twitter says that this vulnerability has been fixed, the bug unfortunately hadn’t been fixed before someone took advantage of it.

According to Twitter’s blog statement, the bug was reported to Twitter in January 2022 and it “immediately investigated and fixed it.” But then, in July, it discovered via “a press report” that someone had already exploited the vulnerability and was now trying to sell the data they collected. Twitter then reviewed a sample of that data and was able to verify that someone had “taken advantage of the issue before it was addressed.”

While Twitter says that it will be contacting the owners of accounts that were affected by this bug and its subsequent breach, that pertains only to account owners that it can confirm were affected. In fact, the blog post announcement of this incident was published because Twitter says it’s not able to confirm all of the accounts that could have been affected and that it is also concerned about “pseudonymous accounts” being targeted by “state or other actors.” It is also worth noting that Twitter said that passwords were not exposed in this breach.

Twitter did offer some advice for those with pseudonymous accounts: Don’t add a publicly available email address or phone number to your Twitter account. And for all Twitter users: Use two-factor authentication for logging in.

Editors' Recommendations

New malware can steal your credit card details — and it’s spreading fast
An individual surrounded by several computers typing on a laptop.
When is the best time to post on Facebook?
A smartphone with the Facebook app icon on it all on a white marble background.
Twitter is building a menu option for Twitter Shops
A person's hands holding a smartphone as they browse Twitter on it.
This new Windows 11 feature will help you protect your passwords
A man sits, using a laptop running the Windows 11 operating system.
Snapchat is down right now. Here’s what we know
A person using Snapchat on an iPhone.
The more Instagram copies TikTok, the more I hate using it
Someone holding an iPhone. The screen shows a full-screen Instagram post.
Elon Musk hints that he could start his own social media platform
elon musk stylized image
Facebook Messenger finally starts testing end-to-end encryption for all chats
facebook messenger testing end to encryption all chats default
What does a check mark mean on Facebook Messenger?
A series of social media app icons on a colorful smartphone screen.
Twitter’s latest features are all about curbing election misinformation
Twitter's new election-specific features shown on a smartphone.
Snapchat Plus subscribers are getting these four new features today
The Snapchat app store listing on a mobile device with a stylus resting on it.
You can (sort of) generate art like Dall-E with TikTok’s latest filter
A person's hand holding a phone with the TikTok app on it.
You can now use the Add Yours sticker on Reels for Facebook and Instagram
A series of three mobile screenshots on a gray background showing the new Add Yours sticker for Facebook Reels.