TweetDeck Users Urged to Revoke Access & Log Out

TweetDeck is urging users to log out of its application due to an XSS vulnerability. Twitter announced a fix this evening but there are still reports from users coming in that the problem is occurring so we recommend that you revoke access from your Twitter account now.


The Register’s Chris Williams also tweeted out earlier: “XSS means Twitter isn’t stripping dangerous code from tweets, allowing JavaScript to run in the context of another user. This is bad.”

Most users that have noticed issues are on Chrome. The vulnerability means the affected Twitter account will retweet spam-like messages and possibly compromise users’ data. Even one of BBC’s Twitter’s accounts was affected.