OMNI•2 min•
Twitter Ex-Security Head's Complaint Exposes Critical Failures
A report from a former Twitter employee reveals serious security and privacy shortcomings, accusing the company of endangering national security.
#Twitter#Security#Cybersecurity#Leak#Parag Agrawal
Peiter 'Mudge' Zatko, who served as Twitter's head of security for approximately 15 months between 2020 and 2022, filed a complaint with the US government. The 84-page report details serious security failures and privacy practices on the platform.
Zatko accuses Twitter of being a mismanaged company, with too many staff members having access to sensitive security and privacy controls without adequate oversight. This, according to Zatko, elevates his concerns to a matter of national security.
Zatko accuses Twitter of being a mismanaged company, with too many staff members having access to sensitive security and privacy controls without adequate oversight. This, according to Zatko, elevates his concerns to a matter of national security.
The report reveals that nearly half of Twitter's servers lack basic security features, such as data encryption, due to outdated or unpatched software.
It also points out that the company is not complying with a 2010 FTC order to protect users' personal information, and that it has lied to independent auditors about a 'comprehensive information security program' required by the FTC.
It also points out that the company is not complying with a 2010 FTC order to protect users' personal information, and that it has lied to independent auditors about a 'comprehensive information security program' required by the FTC.
According to the complaint, Twitter executives prioritized growth over security, seeking massive bonuses of up to $10 million as an incentive for the company's rapid expansion.
In addition, Twitter does not respect users' requests to delete their personal data, due to technical limitations, according to the report.
In addition, Twitter does not respect users' requests to delete their personal data, due to technical limitations, according to the report.
Zatko claims that one or more Twitter employees may be working for undisclosed foreign intelligence services.
It is also alleged that the company's management misrepresented Zatko's findings and tried to hide the report from the board of directors.
It is also alleged that the company's management misrepresented Zatko's findings and tried to hide the report from the board of directors.
Twitter's response to the accusations is that Zatko is a disgruntled employee fired for poor performance.
Twitter CEO Parag Agrawal sent a message to employees stating that Zatko's claims are a 'false narrative riddled with inconsistencies and inaccuracies'. Meanwhile, key lawmakers in Congress have vowed to investigate the claims, including Senator Richard Durbin, chairman of the Senate Judiciary Committee.
Twitter CEO Parag Agrawal sent a message to employees stating that Zatko's claims are a 'false narrative riddled with inconsistencies and inaccuracies'. Meanwhile, key lawmakers in Congress have vowed to investigate the claims, including Senator Richard Durbin, chairman of the Senate Judiciary Committee.
Zatko's allegations also raise questions about Twitter's ability to accurately determine the real number of fake accounts (or bots) on its platform, a central issue in Elon Musk's attempt to withdraw from the $44 billion purchase of the company.
The complaint highlights widespread security failures, deliberate misrepresentations by top executives to government agencies, and the possible penetration of the company by foreign intelligence.
The complaint highlights widespread security failures, deliberate misrepresentations by top executives to government agencies, and the possible penetration of the company by foreign intelligence.
Related Stories
OMNI•3 min•
OMNI•3 min•