Twitter Fixes Bug in Android App That Could Let Hackers Hijack User Accounts

Twitter said it fixed a critical security vulnerability in its app for Android that could allow a hacker to take over a user’s account — and send tweets or direct messages as well as see private account info.

In a tweet Friday, Twitter’s support team urged Android users to “update your app as soon as possible,” pointing latest version of the Twitter Android app (available on Google Play at this link). Twitter said the security flaw did not affect its app for Apple’s iOS.

“We recently fixed a vulnerability within Twitter for Android that could allow a bad actor to see nonpublic account information or to control your account (i.e., send Tweets or Direct Messages),” the company explained a blog post about the app update.

In the previous version of the Android app, a hacker could have inserted “malicious code” into restricted storage areas of the app that would let them take over an unsuspecting user’s account. Twitter said it doesn’t have evidence that the vulnerability was exploited, “but we can’t be completely sure so we are taking extra caution,” the company said in the post.

“We have taken steps to fix this issue and are directly notifying people who could have been exposed to this vulnerability either through the Twitter app or by email with specific instructions to keep them safe,” Twitter continued. “These instructions vary based on what versions of Android and Twitter for Android people are using. We recommend that people follow these instructions as soon as possible. If you are unsure about what to do, update to the latest version of Twitter for Android.”

Twitter also said that users may contact the company’s Office of Data Protection (via a form at this link) to request information regarding their account security.

According to Twitter, the security issue was fixed in the app update released earlier this week on Google Play for the most recent releases of Android OS “KitKat” (version 7.93.4) and “Lollipop” (version 8.18 and later). Twitter for Android is no longer supported on Android OS versions older than KitKat.

Popular on Variety

More Digital

  • Alex Jones

    Google Removes Infowars Android App From Online Store Over Coronavirus Misinformation

    Google on Friday removed the Android version of the Infowars app from the Google Play online store, after comments made by Infowars founder Alex Jones about the COVID-19 pandemic were deemed false and harmful. Google Play was that last major internet platform that provided an outlet for Infowars, which trades in right-wing conspiracy theories and [...]

  • Van Weezer

    Weezer Debuts Online Video Game as Throwback to Simpler Times -- And Album Promo

    Eight-bit diehards, get your thumbs ready: pop rock darlings Weezer have launched a nostalgia-heavy online side-scrolling action game, playable via web browsers.  The “The End of the Game” game has users playing as one of the band’s four members and jumping and shooting their way in a (surprisingly difficult) boss fight against an oversized, beanie-clad [...]

  • Google-Mountain-View-Calif

    Google Commits $800 Million, Mostly in Ad Credits, to Coronavirus Relief Efforts

    Google and parent Alphabet are pitching in to help small businesses, health organizations and governments dealing with the COVID-19 pandemic. The internet company has earmarked more than $800 million for coronavirus relief, about three-fourths of which ($610 million) is in the form of Google Ad credits to small and midsize businesses and governmental orgs, Alphabet [...]

  • Why Are Music Streams Down If

    Why Are Music Streams Down If Everyone's Stuck at Home? Experts Weigh in

    While it might seem counterintuitive that music streams would decline at a time when so many Americans were ordered to stay home, data-savvy label executives were neither startled nor concerned by the 7.6% drop in plays that happened in the March 13-19 tracking week. Simply put, they say it’s down to focus on news and [...]

  • MipTV Online Plus Initiative Launches

    MipTV Online Plus Features Showcases, Pitches, Presentations

    Reed Midem launches its MipTV Online Plus initiative Monday as a digital alternative to the conference that was scheduled to open on the same day in Cannes, but it includes many of the elements that were planned for the physical event. Among the streamed sessions on Monday morning (Paris time) will be the invitation-only Drama [...]

More From Our Brands

Access exclusive content