http://freezerpants.com/category/privacy/ A logahead powered blog en Mon, 13 Oct 2008 20:18:15 +0000 http://freezerpants.com/2008/05/06/twitter_bug<p>A few moments ago I discovered a bug in the way twitter handles protected updates.</p> <p>Apparently, if you search for a username, it will provide you with that users most recent tweet. This could easily be exploited through scrapes to provide a "feed" of a users "protected" updates.</p> <p>So much for privacy. One more reason to hate twitter.</p> <p>For the curious, here is how it&#039;s done,</p> <p>Simply enter the <span class="caps">URL </span>in this format:<br /> http://twitter.com/tw/search/users?q=USERNAME</p> <p>This seems sporadic with the "normal" twitter, but the mobile version showed the last update 100% of the time (that I tried, about a dozen from a few machines)</p> <p>The mobile url is:<br /> http://m.twitter.com/tw/search/users?q=USERNAME</p> <p>You will need to be logged in for this to work.</p>Tue, 06 May 2008 00:46:00 +0000