Hackers use Twitter Card vulnerability and attack users

Twitter was found with a new one vulnerability, which could allow hackers to attack platform users. Accordingly, the vulnerability was detected in the operation «Twitter Cards». Hackers can take advantage of it vulnerability and target users by malicious sharing software and realizing Phishing attacks.

Vulnerability

The vulnerability in Twitter Cards is related to the way the URLs are displayed. When the hacker uses the vulnerability, the tweet will display the Twitter Card for one website, but will actually redirect the user to another site.

Twitter 's vulnerability became known by Terence Eden, who discovered it when he detected a malicious tweet. Eden remarked that the tweet led the user to a completely different site than what he was showing.

As the platform explains, you can attach with Twitter Cards photos, video and multimedia on Tweets, helping to increase traffic to your site.

However, the problem lies in the fact that users redirected to other sites.

Accordingly, this vulnerability still exists.

Most worrying is that despite the fact that vulnerability has been known for some months, Twitter has not taken care of it. Any hacker could exploit and attack Twitter users, even before it was released.

Additionally, it is impossible to find the wrong redirect. This makes vulnerability particularly dangerous.

The error can be used for many scams. Hackers can use it to spread fake news, phishing attacks, and malware in victim's systems. It can be used almost for any malicious activity.

Meanwhile, the same issue has been identified in Facebook. However, the platform claims to know its existence and is something they wanted to be.

For the time being, it is unclear whether Twitter intends to correct this error in the near future.