A bug in Twitter’s platform for third-party app developers exposed some Direct Messages (DMs) from nearly 3 million users to outsiders, the micro-blogging platform has admitted.
The bug ran from May 2017 and within hours of discovering it on September 10, Twitter said it fixed the bug to prevent data from being unintentionally sent to the incorrect developer.
“The bug affected less than 1 per cent of people on Twitter. The bug may have caused some of these interactions to be unintentionally sent to another registered developer,” Twitter said in a blog post on Saturday.
“In some cases, this may have included certain DMs or protected tweets, for example a Direct Message with an airline that had authorised an Account Activity API (AAAPI) developer.”
The Account Activity API allows registered developers to build tools to better support businesses and their communications with customers on Twitter.
Twitter currently has over 336 million users and one percent means