Twitter's Tweet-by-SMS Feature Flawed

Slashdot

+ - Twitter's Tweet-by-SMS Feature Flawed-> 0

Submitted by hypnosec on Tuesday December 04, 2012 @11:44AM

hypnosec writes "A researcher has disclosed vulnerability he found in tweet-by-SMS feature of Twitter through which attackers can post unauthorized tweets on users’ accounts without generating any alerts. Jonathan Rudenberg, the security consultant and researcher behind the disclosure, has revealed through a post on his website that attackers would only need to know their victims’ phone numbers in order to post tweets. Attackers can also spoof the source number before messages are sent to Twitter."
Link to Original Source

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Twitter's Tweet-by-SMS Feature Flawed

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Well, O.K. I'll compromise with my principles because of EXISTENTIAL DESPAIR!

Twitter's Tweet-by-SMS Feature Flawed More Login

Twitter's Tweet-by-SMS Feature Flawed