Forget it, Fool. Google
The trick, Naylor said in a blog post, is to change the reference links Twitter inserts into applications that access its API. Instead of a simple administrative command, a hacker could change the link to a site that downloads digital devilry. Yuck.
"If you change the link in the application settings, it affects all of the historical tweets generated by the application. So it's pretty quick and easy to experiment with different URLs and see what happens," Naylor wrote.
Translation: We're all one sneaky link away from losing control of our Twitter accounts.
This isn't the first time Twitter's had issues. A massive data breach exposed sensitive documents. Profile updates have been wiped clean without warning. And lately, downtime has occurred weekly, and sometimes daily.
All of which is unfortunate. Twitter would add heft to an IPO class whose best prospects seem to be OpenTable
But you can forget a Twitter IPO. Forget an M&A deal, too. So long as miscreants have it this easy, Twitter will remain exactly as it is: private and under assault.
Get your clicks with related Foolishness: