Experts in cybersecurity have discovered a group of 3,207 mobile apps that expose Twitter API keys to the general populace, potentially allowing a threat actor to take control of users’ Twitter accounts linked to the app.
The finding was made by cybersecurity company CloudSEK, which examined extensive app sets for potential data leaks and discovered 3,207 apps that were leaking a working Consumer Key and Consumer Secret for the Twitter API.