27 March 2023

Parts of Twitter’s source code reportedly leaked online


Parts of Twitter’s source code reportedly leaked online

Some portions of Twitter’s source code have been leaked on GitHub, according to court filings published on Friday.

Twitter asked GitHub, a collaborative programming network, to take down the offending code citing copyright infringement. GitHub complied and took down the code that day. It was unclear how long the leaked code had been online, but it appeared to have been public for at least several months, The New York Times notes.

The company also asked the court to identify the alleged infringer who posted Twitter’s source code GitHub without Twitter’s authorization and any individuals who downloaded it.

Citing sources within the company familiar with the matter, the NYT reported that Twitter executives suspect that the leak was the work of an employee who left the company within last year.

According to the sources, the executives were only recently made aware of the source code leak, and one concern is that the code contains security vulnerabilities that hackers could abuse to steal user data or take down the social media site.

Earlier this month, Elon Musk, who bought Twitter last October for $44 billion, announced that he would make the code that Twitter uses to recommend tweets publicly available on March 31, so that it could be reviewed by anyone and scrutinized for possible security issues.


Back to the list

Latest Posts

ICC investigates cyberattacks in Ukraine as possible war crimes

ICC investigates cyberattacks in Ukraine as possible war crimes

The probe is focused on cyberattacks that endangered lives by disrupting essential services.
17 June 2024
Alleged Scattered Spider leader arrested in Spain

Alleged Scattered Spider leader arrested in Spain

The suspect is believed to be a key player in the MGM ransomware attack.
17 June 2024
Scattered Spider hackers switch focus to cloud apps for data theft

Scattered Spider hackers switch focus to cloud apps for data theft

Mandiant has observed UNC3944 accessing platforms like vSphere and Azure via SSO applications to create new virtual machines.
17 June 2024