Twitter Has Major Security Issue - Confirmed Mobile Apps Affected - UberSocial, Twitd
- This is just plain crazy! If you have a Twitter mobile client installed be careful.
Twitter Has Major Security Issue - Confirmed Mobile Apps Affected - UberSocial, Twitdroyd, Issimo, T4BB and Twitter for Android!pantlesspenguin likes this.04-19-11 09:06 AMLike 1 - I uninstalled Twidroyd & changed my Twitter password just to be on the safe side. Thanks for the heads up.04-19-11 09:28 AMLike 0
- The good thing about Twitter is that they don't really make you put as much information into the site as Facebook, which makes it a non-issue for me. It's also a lot easier to straight up delete a Twitter account than a Facebook account if you want to do so.04-19-11 10:48 AMLike 0
-
If you don't remove the access, and your Twitter credentials are saved in your mobile browser, the user can just reinstall the app and use the browser's cached access to reauthorize the application (this is true for most services, Facebook, Twitter, and others). A lot of people will change their password, but still keep the browser cookie, which doesn't help at all. You can uninstall the app, and then reinstall it and have it connected without entering in any credentials again. It's very importantn to remove the connection in twitter settings...Last edited by N8ter; 04-19-11 at 11:12 AM.
04-19-11 11:10 AMLike 0 -
- It's not cause I mistook you in your avatar (it's clearly female to me). I just use he/him the same way languages fall back to masculine in general speech because, well... I didn't bother to look and it's second nature to write that way. It's a habit I developed from years of French class :P04-19-11 11:14 AMLike 0
- It's not cause I mistook you in your avatar (it's clearly female to me). I just use he/him the same way languages fall back to masculine in general speech because, well... I didn't bother to look and it's second nature to write that way. It's a habit I developed from years of French class :P04-19-11 11:26 AMLike 0
- No, because you have removed the App's access to your twitter account and changed your password. When it tries to connect the connection will be denied.
If you don't remove the access, and your Twitter credentials are saved in your mobile browser, the user can just reinstall the app and use the browser's cached access to reauthorize the application (this is true for most services, Facebook, Twitter, and others). A lot of people will change their password, but still keep the browser cookie, which doesn't help at all. You can uninstall the app, and then reinstall it and have it connected without entering in any credentials again. It's very importantn to remove the connection in twitter settings...04-19-11 11:26 AMLike 0 -
If you protect yourself somewhat (i.e., BB Protect or SmartGuard) the risk is minimized as your can remote wipe your device. Also, if you password lock your risk is minimized. Etc.
I think the most important thing is that this "issue" has been publicized and now we know that IF you do lose your phone, you may want to go here fast and make some changes:
https://twitter.com/settings/connections
This is where you can easily remove authentications.
Also, please note, another important twitter security feature is to go to:
https://twitter.com/settings/account
And check the box for "Always use https".
Common sense will go a long way here.PriYankee17 likes this.04-19-11 11:53 AMLike 1 - It's not cause I mistook you in your avatar (it's clearly female to me). I just use he/him the same way languages fall back to masculine in general speech because, well... I didn't bother to look and it's second nature to write that way. It's a habit I developed from years of French class :P
Example:
RIM is a great company! They make great devices. (incorrect)
RIM is a great company! It makes great devices. (correct)
Posted from my CrackBerry at wapforums.crackberry.com04-19-11 12:45 PMLike 0 - This is a very important point.
If you protect yourself somewhat (i.e., BB Protect or SmartGuard) the risk is minimized as your can remote wipe your device. Also, if you password lock your risk is minimized. Etc.
I think the most important thing is that this "issue" has been publicized and now we know that IF you do lose your phone, you may want to go here fast and make some changes:
https://twitter.com/settings/connections
This is where you can easily remove authentications.
Also, please note, another important twitter security feature is to go to:
https://twitter.com/settings/account
And check the box for "Always use https".
Common sense will go a long way here.04-19-11 02:08 PMLike 0
- Forum
- BlackBerry OS Phone Forums
- BlackBerry OS Apps
Twitter Has Major Security Issue - Confirmed Mobile Apps Affected - UberSocial, Twitd
LINK TO POST COPIED TO CLIPBOARD