Jump to content
Sign up to our newsletters
Independent
More
Best
Climate
TV

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in

Tweetdeck shut down: App restarted after thousands of users unwittingly retweeted code

Labour leader Ed Miliband was among the TweetDeck users to be affected

Kashmira Gander
Wednesday 11 June 2014 14:48 EDT
Comments
The logo of social networking website 'Twitter' is displayed on a computer screen in London on September 11, 2013.
The logo of social networking website 'Twitter' is displayed on a computer screen in London on September 11, 2013. (LEON NEAL/AFP/Getty Images)

Your support helps us to tell the story

Support Now

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

Twitter temporarily shut down its TweetDeck client on Wednesday evening, after a security glitch saw tens of thousands of its users unwittingly post a line of code.

The social media giant has since re-launched its application, and has apologised for any inconvenience caused to users during the episode.

TweetDeck users affected by the flaw saw a pop-up window on their screen, before they re-tweeted a line of JavaScript code posted by user called "*andy" using the handle "@derGerun".

To launch the attack, hackers reportedly took advantage of a “cross-site scripting”, or XSS, vulnerability in the TweetDeck system.

Initially, TweetDeck told users to log out and log back in, but when the fault remained, it shut down the application's access to tweets.

Victims of the flaw included Labour opposition leader Ed Miliband, and BBC Breaking News’ Twitter account.

The incident is not the first time tweets containing JavaScript code have self-propagated through security holes in Twitter. The last major outbreak was in 2010 when the so-called Mouseover flaw redirected thousands of users to third-party websites when their mouse hovered over the offending chunk of text.

Join our commenting forum

Join thought-provoking conversations, follow other Independent readers and see their replies

Comments

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in