A cybersecurity researcher has used the latest security flaw in the Twitter application toAndroidto extract 17 million phone numbers from users associated with platform accounts.
Last weekend,Twitteradmitted a vulnerability in its application for Android devices that allowed, through malicious code, that an attacker could gain control of an account and access personal information or publish tweets. However, the company said it was not aware that it had been used in any attack.
According to TechCrunch, the researcherIbrahim BalicHe discovered through the use of this security flaw that the Twitter contacts function allowed to upload lists of phone numbers and that in this way it was possible to obtain information from users.
In this way, Balic has claimed to have been able to relate17 million phone numberswith their respective Twitter accounts, after randomizing more than two billion phone numbers and uploading them to the platform’s Android app.
Telephone numbers, from countries around the world among which areIsrael, Turkey, Iran, Greece, Armenia, France and Germany, ceased to be accessible since December 20, when Twitter patched its application error through an update.