‘Tape or chewing gum:’ Twitter’s lapses echo worldwide

Aug 28, 2022, 7:29 AM | Updated: Aug 30, 2022, 6:06 pm
FILE - The Twitter application is seen on a digital device Monday, April 25, 2022, in San Diego.  A...

FILE - The Twitter application is seen on a digital device Monday, April 25, 2022, in San Diego. A recent bombshell whistleblower report from Twitter's former head of security alleges that the social media company has been negligently lax on cybersecurity and privacy protections for its users for years. While worrisome for anyone on Twitter, the revelations could be especially concerning for those who use it to reach constituencies, get news out about emergencies and for political dissidents and activists in the crosshairs of hackers or their own governments. (AP Photo/Gregory Bull, File)

(AP Photo/Gregory Bull, File)

SAN FRANCISCO (AP) — From fire departments to governments, from school districts to corporations, from local utilities to grassroots organizers around the world, Twitter at its best is a tool to get a message out quickly, efficiently, directly.

It’s also a constant risk-and-reward calculation.

A recent bombshell whistleblower report from Twitter’s former head of security alleges that the social media company has been negligently lax on cybersecurity and privacy protections for its users for years. While worrisome for anyone on Twitter, the revelations could be especially concerning for those who use it to reach constituencies, get news out about emergencies and for political dissidents and activists in the crosshairs of hackers or their own governments.

“We tend to look at these companies as large, well-resourced entities who know what they’re doing — but you realize that a lot of their actions are ad hoc and reactive, driven by crises,” said Prateek Waghre, policy director at the Internet Freedom Foundation, a digital rights nonprofit in India. “Essentially, they’re often held together by cello tape or chewing gum.”

Peiter “Mudge” Zatko, who served as Twitter’s security chief until he was fired early this year, filed the complaints last month with federal U.S. authorities, alleging that the company misled regulators about its poor cybersecurity defenses and its negligence in attempting to root out fake accounts that spread disinformation. Among Zatko’s most serious accusations is that Twitter violated the terms of a 2011 FTC settlement by falsely claiming that it had put stronger measures in place to protect the security and privacy of its users.

Waghre said the allegations in the complaint about India — that Twitter knowingly allowed the Indian government to place its agents on the company payroll where they had “direct unsupervised access to the company’s systems and user data” — were particularly worrisome. He also pointed to an incident earlier this month where a former Twitter employee was found guilty of passing along sensitive user data to royal family members in Saudi Arabia in exchange for bribes.

The consequences of privacy and security lapses can range from inconvenience and embarrassment — such as when an Indiana State Police account was hacked and tweeted “poo-poo head” earlier this year — to much worse. In October 2021, a Saudi humanitarian aid worker was sentenced to 20 years in prison because of an anonymous, satirical Twitter account that the kingdom says he ran. It’s possible that the case is linked with the men accused of spying on behalf of the kingdom while working at Twitter.

As an advocate for dissidents and others detained in Saudi Arabia, Bethany Al-Haidari has been concerned for years about Twitter’s user privacy safeguards. The new whistleblower allegations make her all the more worried.

“Given what we know about how social media is used around the world, that is incredibly problematic,” said Al-Haidari, who works for The Freedom Initiative, a U.S.-based human rights group. The possibility of hackers or governments exploiting the alleged cybersecurity lapses at Twitter to get users’ identities, private messages or other personal information “is quite disturbing to me,” she said.

Chinese-Australian artist and activist Badiucao, who regularly publishes art that criticizes the Chinese Communist Party, expressed concern about the whistleblower’s allegations, noting that many users provide their phone numbers and emails to Twitter.

“Once that personal information is leaked, it could be used to trace your identity,” he said. Badiucao said he regularly receives death threats and propaganda from what appears to be bot or spam accounts.

But the artist plans to keep using Twitter, saying it’s probably the best option Chinese-speaking activists and artists have for a “shelter for free speech.”

Twitter says the whistleblower claims present a “false narrative” about the company and its privacy and data security practices, and that the claims lack context. “Security and privacy have long been company-wide priorities at Twitter and will continue to be,” the company said in a statement.

Despite the heightened concerns sparked by Zatko’s claims, none of the groups The Associated Press spoke to this week plan to stop using Twitter. Security experts say while the whistleblower’s claims are alarming, there’s no reason for individual users to delete their accounts.

High-profile Twitter users and world governments may be at greater risk than average users, experts say. In 2020, for instance, Twitter suffered an embarrassing hack by a teenager who accessed the accounts of former President Barack Obama, Joe Biden, Mike Bloomberg and a number of tech billionaires including Tesla CEO Elon Musk and Amazon founder Jeff Bezos. Musk is currently embroiled in a battle with Twitter as he tries to back out of a $44 billion deal to buy the company.

Yet another security incident raised alarms for Jennifer Grygiel, a Syracuse University communications professor who follows Twitter closely. In 2017, a Twitter customer support worker deactivated then-President Donald Trump’s account for a few minutes during their last day on the job. While the account was restored quickly, Grygiel said, the incident showed how vulnerable Twitter was when it comes to governments, heads of state and military branches that use the platform.

“Am I surprised and shocked by the whistleblower’s allegations? I’m not,” said Trav Robertson, chair of the South Carolina Democratic Party, which uses Twitter to communicate with about 18,700 followers. But he argues that it’s especially important for people not to assume that “the constant attacks on our emails, our databases, our Twitter accounts, our Facebooks” are the new normal. “When we become desensitized to it, we fail to be proactive,” he said.

At the City of Denver’s fire department, public information officer JD Chism acknowledges concern over security issues. But the department has to weight that risk against the way Twitter has become integral to communicating emergencies to the public. The department’s Twitter feed hosts real-time updates on fires and consequent road closures and injuries, alongside retweets from other agencies warning of dangers such as flash floods.

For now, the department will keep using Twitter as it always has, Chism said, “It’s good for taking care of people, and that’s what we are here for.”

Associated Press Writers Krutika Pathi in New Delhi; Jesse Bedayn in Denver; Jennifer Peltz in New York; James Pollard in South Carolina; Zen Soo in Hong Kong; Margaret Stafford in Kansas City; Russ Bynum in Savannah, Georgia; Jay Reeves in Birmingham, Alabama; Amy Taxin in Orange County, California; Rebecca Santana in New Orleans; Jonathan Mattise in Nashville, Tennessee; and Michael Goldberg in Jackson, Mississippi, contributed to this story.

___

This story has been updated to clarify that Barack Obama was former president in 2020.

Copyright © The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

AP

Hiring sign is displayed in Deerfield, Ill., Wednesday, Sept. 21, 2022. The number of Americans fil...
Associated Press

More Americans apply for jobless benefits last week

WASHINGTON (AP) — More Americans filed for unemployment benefits last week, but the labor market remains strong even in the face of persistent inflation and a slowing overall U.S. economy. Jobless claims for the week ending Oct. 1 rose by 29,000 to 219,000, the Labor Department reported Thursday. Last week’s number was revised down by […]
6 hours ago
Associated Press

Turkey appoints new ambassador to Israel as ties warm

ANKARA, Turkey (AP) — Turkey has appointed a new ambassador to Israel, the state-run news agency reported Thursday, in the latest step between the two countries’ efforts toward normalizing ties. Sakir Ozkan Torunlar, a senior diplomat who had served as Turkey’s consul general in Jerusalem between 2010 and 2013, was named to the post, Anadolu […]
6 hours ago
Traders gather around a post as Twitter shares resume trading on the floor at the New York Stock Ex...
Associated Press

Hot inflation slows 3Q earnings growth forecasts

Wall Street expects the latest round of quarterly profits to show burn marks from the hottest inflation in four decades, and the damage could linger into 2023. Analysts have been trimming their forecasts, especially in the retail and communications sectors, as inflation drives up costs and saps consumer spending on everything from food to clothing. […]
6 hours ago
Associated Press

To fill teacher jobs, community colleges offer new degrees

In her second-grade classroom outside Seattle, Fatima Nuñez Ardon often tells her students stories about everyday people realizing their dreams. One day, for example, she talked about Salvadoran American NASA astronaut Francisco Rubio and his journey to the International Space Station. Another day, she told them her own life story — how she, an El […]
6 hours ago
Carroll County Board of Elections Clerk Sarah Dyck, foreground, stamps incoming absentee ballot app...
Associated Press

Falsehoods, harassment stress local election offices in US

CARROLLTON, Ohio (AP) — With early voting less than three weeks away, Nicole Mickley was staring down a daunting to-do list: voting machines to test, poll workers to recruit, an onslaught of public records requests to examine. And then, over a weekend, came word that the long-time county sheriff had died. To Mickley, director of […]
6 hours ago
In this photo provided by the Armed Forces of Denmark, a view the disturbance in the water above th...
Associated Press

Sweden seizes evidence at Baltic Sea pipeline leak site

COPENHAGEN, Denmark (AP) — Sweden’s domestic security agency said Thursday that its preliminary investigation of leaks from two Russian gas pipelines in the Baltic Sea “has strengthened the suspicions of serious sabotage” as the cause and a prosecutor said evidence at the site has been seized. The Swedish Security Service said the probe confirmed that […]
6 hours ago

Sponsored Articles

...
Children’s Cancer Network

Children’s Cancer Network celebrates cancer-fighting superheroes, raises funds during September’s Childhood Cancer Awareness Month

Jace Hyduchak was like most other kids in his kindergarten class: He loved to play basketball, dress up like his favorite superheroes and jump as high as his pint-sized body would take him on his backyard trampoline.
...
Day & Night Air Conditioning, Heating and Plumbing

Ways to prevent clogged drains and what to do if you’re too late

While there are a variety of ways to prevent clogged drains, it's equally as important to know what to do when you're already too late.
(Courtesy Condor)...
Condor Airlines

Condor Airlines shows passion for destinations from Sky Harbor with new-look aircraft

Condor Airlines brings passion to each flight and connects people to their dream destinations throughout the world.
‘Tape or chewing gum:’ Twitter’s lapses echo worldwide