all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Researchers Find 3,200 Apps Exposing Twitter API Keys, Cite ‘BOT Army’ Threat

Add to bookmarks
Aug. 3, 2022, 5:48 p.m. | brooke.crothers

Security Boulevard securityboulevard.com

Researchers Find 3,200 Apps Exposing Twitter API Keys, Cite ‘BOT Army’ Threat

brooke.crothers

Wed, 08/03/2022 - 10:48



  • 17 views



Key Findings:

CloudSEK* researchers said key findings include:



  • Discovered 3,207 apps were leaking valid consumer key and consumer secret information

  • 230 apps were leaking all four 0Auth authentication credentials and could be used to fully take over Twitter accounts to perform critical/sensitive actions.


Some of those sensitive actions include reading Direct Messages, retweeting, deleting messages, liking messages, and getting account settings. …

api api keys apps army bot exposing find keys researchers threat twitter twitter api keys

Visit resource

More from securityboulevard.com / Security Boulevard

Vulnerabilities for AI and ML Applications are Skyrocketing 8 hours ago | securityboulevard.com
ai ai and ml in security ai development applications +34
Cheap ‘Junk-Gun Ransomware’ Emerging on the Dark Web 9 hours ago | securityboulevard.com
affiliates as-a-service blackcat cl0p +30
What Makes Containers Vulnerable? 10 hours ago | securityboulevard.com
containers guide mend security +5
USENIX Security ’23 – NRDelegationAttack: Complexity DDoS attack on DNS Recursive Resolvers 10 hours ago | securityboulevard.com
access attack authors channel +18
DevOps pioneers navigate organizational transformation 12 hours ago | securityboulevard.com
depth devops devops transformation download +16
To Breach or Not to Breach 12 hours ago | securityboulevard.com
addition adoption breach can +17
Randall Munroe’s XKCD ‘Eclipse Path Maps’ 12 hours ago | securityboulevard.com
eclipse humor maps path +6
What to Consider When Choosing a Software Composition Analysis (SCA) Tool 13 hours ago | securityboulevard.com
actionable alerts analysis application +22
House Passes Privacy-Preserving Bill, but Biden Blasts it 13 hours ago | securityboulevard.com
4th amendment adtech advertising and adtech api security +58

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cloud Security Engineer

@ Pacific Gas and Electric Company | Oakland, CA, US, 94612
View on infosec-jobs.com

Penetration Tester (Level 2)

@ Verve Group | Pune, Mahārāshtra, India
View on infosec-jobs.com

Senior Security Operations Engineer (Azure)

@ Jamf | US Remote
View on infosec-jobs.com

(Junior) Cyber Security Consultant IAM (m/w/d)

@ Atos | Berlin, DE, D-13353
View on infosec-jobs.com
View more jobs