Hackers could sneak into your Twitter account and see “nonpublic account information” such as direct messages and protected tweets if you don’t update the Android app.
Twitter urges all users with Android devices to update the app as soon as possible. A security flaw has left millions of accounts at risk, but the social network has discovered the vulnerability and rolled out a fix. It’s just a matter of users actually listening to Twitter and following the instructions.
Twitter suggests that no hackers exploited the security flaw. Yet the social network admits it cannot be completely sure and asks users with Android devices to update the app immediately. Anyone who stays on earlier versions of Twitter for Android could put private data such as direct messages and protected tweets in front of hackers.
Other platforms, including iOS and the macOS, are not affected by this. Twitter suggests the security flaw is limited to its Android app.
“Prior to the fix, through a complicated process involving the insertion of malicious code into restricted areas of the Twitter app, it may have been possible for a bad actor to access information (e.g., Direct Messages, protected Tweets, location information) from the app,” Twitter said on its privacy blog.
In an email sent out on Friday afternoon, the social network confirmed its discovery and next steps. Twitter also shared that its Office of Data Protection can examine account security. Just complete the Office of Data Protection’s form, and shortly after you’ll receive a comprehensive report on how safe your Twitter account is.
The app update is available on the Play Store today. Users just need to download and install the latest version of Twitter for Android, and then they’re all set. Twitter hasn’t advised any users to change their passwords or reset two-factor authentication, though.
Both Twitter’s email and blog post included an apology. It will continue to direct resources toward privacy and security in the face of threats from hackers.