Twitter Fixed a Bug That Exposed Advertisers' Sensitive Credit Details Internally

Data security experts find "a clear risk for fraud"

Join TV, media, marketing and tech leaders for Adweek Convergent TV, Mar. 21–22. Virtual and in-person passes available. 50% off through Feb. 6.


A bug in Twitter’s system, which was rectified on Saturday, exposed sensitive information to the company’s advertising team. Names, addresses and credit card information of several advertisers were left exposed, Adweek has learned.

The bug was identified on Thursday by privacy researcher Zach Edwards. He found that the company ingested sensitive credit card information without any encryption. The error occurred in the midst of swift changes to the platform and across-the-board staff cuts in the wake of Elon Musk’s takeover three weeks ago.

AW+

WORK SMARTER - LEARN, GROW AND BE INSPIRED.

Subscribe today!

To Read the Full Story Become an Adweek+ Subscriber

View Subscription Options

Already a member? Sign in