Security news aggregator

Latest coverage for Twitter

Twitter is a social media platform whose accounts, APIs, and integrations can expose users to account takeover, data leaks, and abuse.

42 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Twitter is a public social-media platform, now operated under the X name, where users post short messages, share media, and communicate through replies and direct messages. Its security relevance comes from the volume and speed of public content, account relationships, and links exchanged there. Researchers also use it for threat intelligence, while attackers may exploit public trust and impersonation to distribute phishing pages, malware, or fraudulent information.

Material risks include account takeover through stolen credentials, session theft, or compromised third-party applications; abuse of APIs and OAuth permissions; and exposure of personal data in posts, metadata, or private communications. Security teams should verify accounts and links rather than treating platform identity as proof, restrict and review application access, protect administrator accounts with phishing-resistant multifactor authentication where available, and preserve relevant posts or messages during investigations because content and account ownership can change.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 42 Filtered view

Civil recovery order targets PlugwalkJoe's illicit gains while he serves US sentence British prosecutors have secured a civil recovery order to seize crypto assets worth £4.11 million ($5.39 million) from Twitter hacker Joseph James O'Connor, clawing back the proceeds of a scam that used hijacked celebrity accounts to solicit digital currency and threaten high-profile individuals.…

If you're still on X you'd better disable this insecure-by-default calling feature, lest someone snatch your IP Video and audio calling features for X Premium users added last year to Elon Musk's version of Twitter have been expanded to everyone on the platform, and we're warning Reg readers yet again to disable the feature - this time because it appears to expose user IP addresses.…

Also: Twitter hijackings, BEC arrest, and critical vulnerabilities Infosec in brief We gather everyone's still easing themselves into the New Year. Deleting screens of unread emails, putting on a brave face in meetings, and slowly getting up to speed. While you're recovering from the Christmas break, Meta has been busy introducing fresh ways to monetize your web surfing habits while dressing it up as a user experience improvement.…

Admits to cyberstalking, wire fraud charges as Feds take $700k off him, claim he took part in swatting attacks A 23-year-old British citizen has confessed to "multiple schemes" involving computer crimes, including playing a part in the July 2020 Twitter attack that saw the accounts of Amazon CEO Jeff Bezos, Kanye West, and former President Barack Obama hijacked by an unidentified crew.…

Redmond expands a digital ID process for its platform as Musk seeks cash for blue check marks As Elon Musk tears at Twitter's credibility by demanding businesses and individuals pay for their blue verification checks, Microsoft is pushing ts own free digital ID technology to companies and their employees on LinkedIn.…

Loading more headlines...