TweakTown
Tech content trusted by users in North America and around the world
5,673 Reviews & Articles | 36,062 News Posts
Weekly Giveaway: Fractal Design Arc Cases Contest (Global Entry!)

Security experts suggest removing 3rd party apps from Twitter

Security experts are suggesting that all Twitter users log-in and remove all third party application access after Islamic hacker nabs OAuth keys

| Social Networking News | Posted: Aug 20, 2013 9:24 pm

All Twitter users are being advised today to log into their account and revoke access to all third-party applications after an Islamic hacker managed to pull the entire OAuth database for users of Twitter. Calling himself the Mauritania Attacker, the hacker from the West African country of Mauritania posted details from just over 15,000 Twitter users earlier today and claims to have millions more. It's not clear whether he attacked Twitter or a third-party site. The latter is much more likely. Twitter says they are looking into the situation.

 

TweakTown image news/3/2/32412_1_security_experts_suggesting_to_remove_3rd_party_apps_from_twitter.jpg

 

Twitter says that the stolen files do not include passwords, but do contain all of the usernames as well as OAuth access keys used by third-party applications to manage your Twitter account on your behalf. Security expert Allen Woodward, of the University of Surrey in the UK, told website Gigaom that the easy way to protect your account is to log-in and delete all third-party access to the account. Then by simply reauthorizing those accounts, a new key will be generated and everything will be safe again.

 

"Personally, I do regular housekeeping where I go into the Apps settings of Twitter and delete the third party apps that have access. The reason is that at present Twitter OAuth tokens once issued do not expire. You have to manually revoke them," said Woodwars. "So, I think best thing one could [do] is to go in and revoke third party's apps rights and then just relogin when/if you want to reaccess Twitter via that app. This way a new token will be issued."

NEWS SOURCE
Gigaom.com

Related Tags

Further Reading: Read and find more Social Networking news at our Social Networking news index page.

Do you get our news RSS feed? Get It!

Post a Comment about this news

Latest Tech News Posts

View More News Posts

Latest Downloads

View More Latest Downloads

TweakTown Web Poll

Question: Did EA kill the Battlefield franchise with the terrible BF4 issues?

Yes, Battlefield is doomed

No, Battlefield will live on strong

I'm not sure, but I know EA needs to improve its game

or View the Results

View More Polls

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases
Get TweakTown updates via Facebook!
Just click the "Like" button below