Jump to content

Search the Community

Showing results for tags 'twitter'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Site Related
    • News & Updates
    • Site / Forum Feedback
    • Member Introduction
  • News
    • General News
    • FileSharing News
    • Mobile News
    • Software News
    • Security & Privacy News
    • Technology News
  • Downloads
    • nsane.down
  • General Discussions & Support
    • Filesharing Chat
    • Security & Privacy Center
    • Software Chat
    • Mobile Mania
    • Technology Talk
    • Entertainment Exchange
    • Guides & Tutorials
  • Off-Topic Chat
    • The Chat Bar
    • Jokes & Funny Stuff
    • Polling Station


  • Drivers
  • Filesharing
    • BitTorrent
    • eDonkey & Direct Connect (DC)
    • NewsReaders (Usenet)
    • Other P2P Clients & Tools
  • Internet
    • Download Managers & FTP Clients
    • Messengers
    • Web Browsers
    • Other Internet Tools
  • Multimedia
    • Codecs & Converters
    • Image Viewers & Editors
    • Media Players
    • Other Multimedia Software
  • Security
    • Anti-Malware
    • Firewalls
    • Other Security Tools
  • System
    • Benchmarking & System Info
    • Customization
    • Defrag Tools
    • Disc & Registry Cleaners
    • Management Suites
    • Other System Tools
  • Other Apps
    • Burning & Imaging
    • Document Viewers & Editors
    • File Managers & Archivers
    • Miscellaneous Applications
  • Linux Distributions


  • General News
  • File Sharing News
  • Mobile News
  • Software News
  • Security & Privacy News
  • Technology News

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...

  1. Twitter formally announces Blue subscription, rolling out in Canada and Australia Twitter's long rumored subscription service quietly launched late last month, courtesy of an update to the app's listing on Apple's App Store. Twitter Blue costs $2.99 per month, and for that price you'll get access to a number of features such as the ability to organize tweets into folders, use custom icons, and change the app's accent color. Today, the micro-blogging service formally introduced Blue, with its first iteration now rolling out in Australia and Canada. Subscribers in those countries will pay CA$3.49 or AU$4.49 to have access to several premium features mentioned above as well as the ability to revise a tweet before it goes live with "Undo Tweet". This feature allows you to set a timer of up to 30 seconds, within which you can retract your tweet and make the necessary changes before posting it. More importantly, it gives you some time window to preview your tweet before anyone else can see it. In addition, there's a new Bookmark Folders feature with which you can organize your saved tweets in a single location where it's easier to find them. If you'd like a more convenient reading experience, then the “Reader Mode” is your thing. It lets you view threads more easily by “turning them into easy-to-read text”. Twitter Blue is initially available in Australia and Canada starting today, with the goal of gathering feedback in order to build more features for subscribers. There's no word, though, as to when the service will launch in other regions. Twitter formally announces Blue subscription, rolling out in Canada and Australia
  2. Twitter Rolls Out Taller Image Crops For Android And iOS Today Twitter today announced that it’s rolling out image crops for its Android and iOS apps that allow for taller, bigger, better images in posts. Of course better is really a subjective term. As there are surely some users who will not appreciate the taller image crops that Twitter has to offer. Nevertheless, this is a change that’s happening. Having said that it’s also a change that applies to the Android and iOS apps only. As taller crops don’t seem to be supported on Twitter for the web. Twitter also refrains from mentioning PC at all in its announcement. So it’s likely that this won’t be showing up for PC users. For mobile users, the change should already be visible. Twitter image crops on mobile are basically gone now As is the joy from posting any “open for the surprise” images. If you were a user that falls into this category, you can probably get around the change by posting really, really tall images. But for the majority of users, this is a positive change that brings in quality of life to the app experience. Now when you tweet you probably won’t have to worry so much about the dimensions of the image you include. Is your picture too tall? Who cares. Because image previews in the app should show all of or most of the image moving forward. See Twitter’s post below for an example of what this looks like. In short, or in this case tall, image previews are more forgiving. It also makes it possible for users viewing posts in their feed to preview an entire image without having to tap on it. Which in turn makes it easier to continue scrolling through the feed and consuming more content. no bird too tall, no crop too short introducing bigger and better images on iOS and Android, now available to everyone pic.twitter.com/2buHfhfRAx — Twitter (@Twitter) May 5, 2021 A better image experience overall on Android If you use the app more on Android than you do on the web, the experience of posting or viewing images using the mobile app is much better now overall. Twitter recently rolled out 4K image support for all mobile users. So in pairing with this new cropping change, you can post bigger taller images that may just be 4K resolution and they’ll be perfectly visible to all mobile users. The same goes for you when viewing photos like this posted by others. Source: Twitter Rolls Out Taller Image Crops For Android And iOS Today
  3. You Can Now Upload, View 4K Images on Twitter for Android Twitter just flipped the switch on Android and iOS devices, allowing users to upload and view images with a resolution of up to 4K. No more complaining about crappy image quality on Twitter, okay? To enable this on your device, head into the app’s Data Usage settings menu and select when you want the app to allow for 4K upload and viewing. You can choose Never, WiFi Only, or WiFi & Mobile Data. Totally up to you, but do note, 4K images come with larger file sizes. Watch out for that data plan of yours. Sony device owners with 4K display, today is your day. It’s time to rub it in our faces. Time to Tweet those high res pics –– the option to upload and view 4K images on Android and iOS is now available for everyone. To start uploading and viewing images in 4K, update your high-quality image preferences in “Data usage” settings. https://t.co/XDnWOji3nx — Twitter Support (@TwitterSupport) April 21, 2021 Source: You Can Now Upload, View 4K Images on Twitter for Android
  4. RIAA: Twitter Must License Music & Fight Piracy Without Charge The RIAA and NMPA are putting Twitter under pressure to do something about the platform's piracy problem. Slamming the company for allowing pre-release music to be distributed to the public, the industry groups say that Twitter is failing to meet its legal obligations when responding to takedown notices. Licensing is the answer, they suggest, but that is just the tip of the iceberg. Over the years, a number of music industry players have taken on some of the largest content distribution platforms on the Internet over alleged copyright infringement, with varying success. Services such as Napster and LimeWire were effectively destroyed through litigation but more recent problems aren’t easily solvable in the same way. YouTube and Facebook, for example, have very deep pockets and an abundance of lawyers but perhaps more importantly, they also have the potential to become formidable long-term music distribution partners. A similar case can be made for Twitter but it is becoming increasingly clear that while the music industry would like to partner with the social platform, it’s currently disappointed with Twitter’s attitude towards copyright infringement. Last December, RIAA chairman and CEO Mitch Glazier said that while YouTube and Facebook had developed anti-piracy tools, Twitter had done nothing and things needed to change. It appears that a few months on, little has. RIAA and NMPA Chiefs Slam Twitter In an op-ed just published in Billboard, Mitch Glazier and National Music Publishers Association president David Israelite lay into Twitter again, stating that music creators and music fans deserve better from the social networking service. Noting that Twitter can be innovative when it wants to be, Glazier and Israelite say that when it comes to piracy, it’s a whole different game. “(i)n one important respect Twitter remains ‘old school’ and stubbornly refuses to use even the most basic tools when it comes to combating piracy or helping music creators prevent theft of their works on its platform. Unfortunately, the company’s efforts to innovate only seem to go so far,” they begin. With the basics out of the way, the pair swiftly turn to Twitter’s business model, implying that without music and music fans, Twitter wouldn’t be where it is today. The authors say that record companies and music publishers want the “partnership” with Twitter to work, even going as far as expressing pride in powering Twitter’s success. But unfortunately, that’s when the pleasantries end. “[T]he viral immediacy and global reach of the Twitter platform presents a double-edged sword – one that cuts especially deep for artists, songwriters, and music rightsholders who see their work leaked, copied, distributed, and monetized on the platform with almost no recourse,” they write, sounding the alarm. “Last year music creators sent more than 2 million notices to Twitter of unlicensed and infringing appearances of copyrighted music on the platform – more than 200,000 of which dealt with the especially harmful presence of not yet released stolen songs.” Twitter’s Response is “Totally Inadequate” While many platforms have been criticized by the music industry for not doing enough to combat piracy, in Twitter’s case there appears to be more under the hood. Complaining that Twitter can take “days or longer” to respond to a complaint, the industry leaders flat-out accuse Twitter of failing to meet its legal obligations – strong words when that could theoretically form the basis of a lawsuit. There is no clear suggestion of legal action at this stage but Glazier and Israelite imply that a compromise of sorts could be reached with Twitter. Interestingly the parameters being suggested seem to push Twitter much further than its legal obligations require. For example, in respect of pre-release music leaks, the music bosses want takedowns actioned almost immediately. “With pre-release leaks, takedowns must come in seconds or minutes, not days,” they write. Building upon the requirement for a real-time response, the RIAA and NMPA want Twitter to proactively find pirated music on its platform, without first having to be notified that infringement has taken place. “While Twitter’s response to takedown notices fails to meet its legal obligations, even worse is the company’s refusal to take affirmative steps to more effectively police its own platform and find unlicensed music before it is widely circulated and without waiting for a rightsholder to do the work and notice the infringement for them,” they note. “No one can see better than Twitter what happens on its system or has the access and technical capacity to address problems at the speed and scale of the network. There is much Twitter could do to address this problem.” So What Should Twitter Do? Given that the RIAA and NMPA strongly suggest they would like Twitter to be a partner, it will come as no surprise that they would like Twitter to buy its way out of its current predicament. “Most fundamentally, [Twitter] could license music and pay creators for the songs and recordings that it distributes. This is what many other services have done and it is the single most important thing the company could do to meet its obligations to artists and songwriters,” the RIAA and NMPA chiefs write. On the anti-piracy front, the industry bosses would like Twitter to be more like YouTube and Facebook by introducing automated tools and content protection technologies. These should be able to take down unlicensed copies of works before they even appear on Twitter, negating the need for “artists, songwriters, and their representatives to scour the five hundred million tweets that are posted to the platform every day.” An interesting element of the RIAA and NMPA criticism is that Twitter does have the ability to help right now but will only do so for a price. They accuse the platform of demanding “massive payments” from music creators in return for access to the company’s data flow and with that the ability to spot pirated content. “Twitter could easily provide an API with sufficient capacity and speed to allow for monitoring at scale, just as it provides to other users like researchers who it hopes will help publicize and vouch for the company’s operations and to third party vendors who sell Twitter analytics. Incredibly, despite many requests it has refused to provide it to music creators without charge,” the groups write. “Charging music creators for access to the data they need to find infringement of their own work is just another Silicon Valley shakedown – moving fast and breaking music.” In summary, the RIAA and NMPA are demanding “serious and immediate changes” to Twitter’s response to unlicensed music appearing on the platform. There are currently no indications of what might happen if those changes aren’t delivered as requested. RIAA: Twitter Must License Music & Fight Piracy Without Charge
  5. Twitter images can be abused to hide ZIP, MP3 files — here's how Yesterday, a researcher disclosed a method of hiding up to three MB of data inside a Twitter image. In his demonstration, the researcher showed both MP3 audio files and ZIP archives contained within the PNG images hosted on Twitter. Although the art of hiding non-image data in images (steganography) isn't novel, the fact that the images can be hosted on a popular website like Twitter and are not sanitized opens up a possibility for their abuse by malicious actors. An image that sings... Yesterday, researcher and programmer David Buchanan attached example images to his tweets that had data such as entire ZIP archives and MP3 files hidden within. Although the attached PNG files hosted on Twitter represent valid images when previewed, merely downloading and changing their file extension was enough to obtain different content from the same file. An example image file posted by Buchanan to Twitter contains a ZIP archive within Source: Twitter As observed by BleepingComputer the 6 KB image tweeted by the researcher contains an entire ZIP archive. The ZIP contains Buchanan's source code that anyone can use to pack miscellaneous contents into a PNG image. The PNG image tweeted by Buchanan has the structure of a valid ZIP file Source: BleepingComputer For those who prefer the slightly-less hands-on approach, the researcher has also provided source code for generating what he calls tweetable-polyglot-png files on GitHub. In another example uploaded to Twitter, Buchanan tweeted an image that could sing. "Download this one, rename to .mp3, and open in VLC for a surprise. (Note: make sure you download the full resolution version of the file, should be 2048x2048px)," said the researcher. As tested by BleepingComputer, the picture located at the Twitter image server below is approximately 2.5 MB in size and can be saved with a ".mp3" extension. https://pbs.twimg.com/media/Ewo_O6zWUAAWizr?format=png&name=large Once opened, the image file, now turned MP3, would start playing the song Never Gonna Give You Up by Rick Astley. "Twitter does compress images, most of the time, but there are some scenarios where they don't." "Twitter also attempts to strip any non-essential metadata, so any existing 'polyglot file' techniques wouldn't work." "The new trick which I discovered, is that you can append data to the end of the 'DEFLATE' stream (the part of the file that stores the compressed pixel data), and Twitter will not strip it," Buchanan told BleepingComputer in an email interview. Open to abuse by stealthy threat actors Steganography techniques are often leveraged by stealthy threat actors as they enable them to hide malicious commands, payload, and other content in ordinary-looking files, such as images. Just yesterday, BleepingComputer reported on a new exfiltration technique using which cybercriminals were hiding stolen credit card data in JPG images. The fact that Twitter may not always strip extraneous information from an image, as demonstrated by Buchanan, opens up room for the platform's abuse by threat actors. Moreover, what poses an additional challenge is blocking Twitter image traffic may impact legitimate operations. For example, a network administrator blocking Twitter's image domain pbs.twimg.com would also cause legitimate images hosted on Twitter to be blocked. That being said, Buchanan believes his PNG image proof-of-concept technique may not be particularly useful by itself as more steganography methods are viable. "I don't think this technique is particularly useful for attackers, because more traditional image steganography techniques are easier to implement (and even more stealthy)." However, more likely than not, the PNG technique demonstrated by the researcher could be used by malware for facilitating its command-and-control C2 activities. "But maybe it could be used as part of a C2 system, for distributing malicious files to infected hosts," Buchanan further told BleepingComputer. Likewise, because Twitter may be considered a safe host by network monitoring systems, malware distribution via Twitter using such image files remains a viable method for bypassing security programs. When asked if Twitter was aware of this bug, the researcher told BleepingComputer: "I reported my original JPEG-based trick to Twitter's bug bounty program, but they said it wasn't a security bug, so I didn't bother reporting this one to them." In his example from 2018, as reported by BleepingComputer, Buchanan had tweeted a tiny JPG thumbnail that contained Project Gutenberg's huge collection of The Complete Works of William Shakespeare. The Complete Works of William Shakespeare stored in a tiny JPG file on Twitter Source: BleepingComputer Previously, attackers have misused legitimate services like Imgur to host their images which were later used to calculate malicious Cobalt Strike payload. BleepingComputer has reached out to Twitter for comment before publishing this article but we have not heard back yet. Source: Twitter images can be abused to hide ZIP, MP3 files — here's how
  6. Twitter now supports multiple 2FA security keys on mobile and web Twitter has added support for multiple security keys to accounts with two-factor authentication (2FA) enabled for logging into the social network's web interface and mobile apps. "Secure your account (and that alt) with multiple security keys," Twitter said. "Now you can enroll and log in with more than one physical key on both mobile and web." The company also announced a future option for 2FA-enabled accounts to use security keys as the primary authentication method while having all other login methods disabled. "And coming soon: the option to add and use security keys as your only authentication method, without any other methods turned on," Twitter added. Twitter has added support for using security keys when logging into mobile apps (Android and iOS) for 2FA-enabled accounts in December 2020. Secure your account (and that alt) with multiple security keys. Now you can enroll and log in with more than one physical key on both mobile and web. And coming soon: the option to add and use security keys as your only authentication method, without any other methods turned on. — Twitter Support (@TwitterSupport) March 15, 2021 2FA is an additional security layer for Twitter accounts that requires users to use a security key or enter a code on top of only entering a password to authenticate successfully. This makes sure that only the owner can log in and block malicious attempts to take over the account by guessing or resetting the password. While some high-profile Twitter accounts were hijacked last year even though they had 2FA enabled after attackers could gain access to internal admin systems, users should still toggle 2FA to be better protected against less-sophisticated hacking attempts. To turn on 2FA on your Twitter account, you will have to go to your profile menu into Settings and Privacy, then to Security and account access (desktop) or Account > Security (iOS) and toggle on Two-factor authentication. Over the weekend, Twitter addressed a bug causing users to become temporarily suspended when tweeting the word 'Memphis.' Source: Twitter now supports multiple 2FA security keys on mobile and web
  7. Russian attempt to throttle Twitter appears to backfire Begin with 99 problems. Solve one with a regex. You now have 108 problems... Enlarge / The head of the Russian Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor), Andrei Lipov, during a meeting with Russia's president, Vladimir Putin, at the Moscow Kremlin. Alexei Nikolsky/Russian Presidential Press and Information Office/TASS (Photo by Alexei NikolskyTASS via Getty Images) Kentik Director of Internet Analysis Doug Madory observed this morning that traffic to Russian state ISP Rostelecom dropped significantly in the wake of its attempt to throttle Twitter. The outages seem to have been caused by a poorly crafted substring in a blocklist/network shaping tool maintained by Russia's Roskomnadzor bureau. What Roskomnadzor intended was to slow down access to Twitter's link shortening service, t.co. All links embedded in tweets are automatically wrapped through this service, which enables Twitter to monitor the types and quality of links its users share. Russian authorities have railed against Twitter for some time due to the service's failure or refusal to remove content illegal in Russia. This includes content that is illegal in most of the world and violates Twitter's own terms of service, such as self harm and child sexualization—but Roskomnadzor only claims 2,000 or so such posts over the course of a year. It seems likely that the real sticking point for the agency is posts encouraging children to join Russian opposition protests. Enlarge / Network analytics vendor Kentik recorded a serious disruption to traffic headed toward Russian state-managed ISP Rostelecom as the Twitter throttles were put into effect. Doug Madory PBS reports on the unintended effects of Roskomnadzor's Twitter throttling: As the Russian authorities slowed down Twitter, some government websites suffered outages and access problems. It’s not clear if the events were connected, and some experts suggested they could have been the result of unrelated cyberattacks. The Ministry of Digital Development acknowledged outages on some government websites but said they were linked to equipment problems at communications provider Rostelecom. Madory credits Russian 3D artist Gregory Kodyrev with finding a link between the Twitter throttle and far more widespread slowdowns—apparently, Roskomnadzor inadvertently blocked or throttled all domains containing the string t.co rather than blocking only the domain t.co itself. This would cause the throttle or block to be applied to—for instance—microsoft.com, reddit.com, and even Russian state-operated news site rt.com. We do not have access to any IP addresses behind Roskomnadzor's traffic filtering service in order to test this claim, but it appears to be a reasonable explanation for the concrete observations of reduced traffic to Rostelecom networks. Russian attempt to throttle Twitter appears to backfire
  8. Everyone on Twitter Needs an Etiquette Manual After a year of quarantine, we could all use help relearning how to connect to people in a healthy way. In America in particular, unlike, say, in the hit Regency-era London drama Bridgerton, the consequences for committing social errors in 2021 seems low.Photograph: LIAM DANIEL/NETFLIX There’s no getting around it: Quarantine is making us weird. Humans did not evolve as social animals for thousands of years to sit alone in their houses, communicating solely by typing and talking through a series of small digital boxes. After almost a year of Covid lockdown, I’ve completely lost the ability to make small talk. I wasn’t great at it before, but at least I was able to say hi and exchange pleasantries at daycare drop off. Now when I see someone I know in person—not even friends! Just acquaintances!—I simply stare at them while my eyes slowly well up with tears. You'd think Zoom and email and Twitter and TikTok might offer some solace to the contact-starved, but after 11 long months it's getting more difficult to mediate those interactions as well. Alone in our dwellings, we are pure id. We howl back and forth into the social media black hole while we boil yet another pot of ramen for dinner. "You should recognize when it feels like a ‘witching hour,’ aka everyone is ready to be mad about everything," says Anne Helen Petersen, author of Can't Even: How Millennials Became the Burnout Generation, over email. "When it feels like everyone in your feed is using social media as a funnel for emotions that don't have anywhere else to go—which is happening a lot right now—that's when you close your laptop or close the app." If you too are struggling with how to connect with people in a healthier way, I have a resource that I will now share with all of you. When I’m lying in bed, mentally berating myself for being unutterably awkward yet again, I reread my favorite highlighted pages from that stalwart 19th-century companion, Arthur Martine’s Handbook to Etiquette and Guide to True Politeness. Rules of the Road Etiquette manuals have a bad reputation, particularly since many of the more famous ones available on Amazon and Project Gutenberg date back to the 1860s. They seem as useless, outdated, rigid, and confining as the corsets and gloves that were de rigueur apparel at the time. Americans, particularly, seem unimpressed with rigid social codes. Unlike, say, in the hit Netflix drama Bridgerton, which is set in Regency-era London, the consequences for committing social errors in the US in 2021 seems low. Nowadays, your parents don't force you into marriage if you're unchaperoned with a dude in the garden. We don't even have chaperones. Etiquette has also long been used as a tool to enforce gender-based and racial hierarchies. You don’t have to admit to being racist if you can say you don't like someone for being loud or aggressive. You don't have to admit to being sexist if you can just say you didn't hire a woman because she wore inappropriate clothing. But even as we commenced tearing down the social norms that worked against us, we forgot that we do need at least a few guardrails. Nowhere is this more clear than on the internet, where tempers flare high, reading comprehension is low, and an experiment with an air fryer and a hot dog can turn into fiery discourse that lasts days. We're all supposed to know intuitively how to navigate this space, especially those of us who grew up peeking into chatrooms and messaging on AIM. But it's hard to remember basic social rules, especially now that you can't close the app, walk to the bar, and have a friend tell you, "That is nuts. Do not engage." This is why you may need someone as wise as Emily Post, who will gently prod you to remember "instinctive consideration for the feelings of others.” Manners aren't about learning what fork to use. You learn manners because you're surrounded by people, even when you're alone, and you need to care about how other people feel. How to Behave I've been obsessed with etiquette manuals ever since my parents enrolled me in a cotillion class in middle school. If you skip all the parts about how the carriage is the most elegant form of transportation and how to greet someone at the opera, many etiquette manuals remain surprisingly relevant today. My favorite is Arthur Martine’s, because his prescriptions are much more general, and the book hasn’t lost any of its sharpness or humor in the almost 200 years since it was written. An annotated list of Martine's guidelines for conversation should be posted at the top of every social platform before you log in. “We can always be ordinarily civil, even if we cannot always be absolutely wise,” he sensibly states at the start. In today's terms, we can take that to mean the internet is big, and you are probably not the smartest person on it. Being kind is easier (and pays more dividends) than trying to dazzle a bunch of unimpressed strangers with your wit. Here's more of Martine's wisdom: In mixed company, be readier to hear than speak. There are a lot of people on the internet, of all different shapes, colors, sexual orientations, genders, jobs, backgrounds, and ages. Assuming that your experiences are universal could backfire on you. Never argue with anyone but men of sense. You can happily ignore, block, or mute any bad-faith arguments, arguments without evidence, and everyone who demands that you respond to their claims that you are dumb, unloved, and ugly. If you give a jest, you should be able to take one. Obviously. If you are nettled or stung, take care to never show it or else it provokes more. As he memorably puts it, the best way to not be hit by arrows is to not turn yourself into a target. This is the conventional rule of how to deal with internet trolls. How did they troll people before there was an internet? Parchment? Semaphore? Telegrams? I also find his descriptions of people to avoid to be startlingly accurate today. For example, I instantly recognized a 19th-century version of the Reply Guy in his description of the clever bore: “If you say, ‘Hang the weather!’ before such a man, he immediately proves, by logical demonstrations, that the weather has no neck by which it can be suspended." Rules of the Road Every time I fear that I have kiboshed yet another of my few remaining friendships with irredeemable pandemic awkwardness, I open Martine. He is a constant, soothing reminder of what really matters—that people will always respond if you care more about them than what they think of you, and that saying something genuine is always preferable to saying something overly clever, planned, or strained. We used to know these things, but we're slowly forgetting them. Maybe that's why historical shows like Bridgerton have gotten so popular. Rules can be confining, but they’re also the things that keep you from falling off the tracks—which way too many of us are in danger of doing. With the advent of effective vaccines, I’m hoping to do more in-person interaction soon. But in the meantime, if I am to pick some social norms to adhere to in quarantine, being kind is probably a more productive one than switching back to regular pants. If you buy something using links in our stories, we may earn a commission. This helps support our journalism. Learn more. Everyone on Twitter Needs an Etiquette Manual
  9. Twitter launches new ‘Birdwatch’ initiative to combat misinformation Today, Twitter announced an all-new initiative for combating the massive amount of misinformation on the platform called Birdwatch. Birdwatch is a collection of new crowdsourcing tools designed to allow users to flag tweets as misleading and to “write notes that provide informative context.” Twitter is starting off this new initiative with a separate website that you can sign into with your Twitter credentials. It’s clear that Twitter is excited about this new initiative but is still not completely sure of its viability. They note in their press release that this is a pilot program, and it lives on a separate website specifically to allow them to determine if Birdwatch can truly help combat misinformation. Birdwatch simply allows users who discover misinformation to “create notes that add context to Tweets.” It also allows users to tell Twitter if they believe that a particular tweet may cause harm. The system is essentially crowdsourced, as other users can disagree with your conclusion. At the moment, notes won’t appear on Twitter itself for regular users. But if you want to participate in the pilot program you can use the new separate Birdwatch website to see notes about misinformation in tweets. All Twitter users are eligible to participate. You can follow @Birdwatch on Twitter to keep up-to-date on the program. Presumably, if the pilot program indeed does its job, Twitter will extend these moderation features to the core Twitter experience. You can take a look at the new Birdwatch website in the gallery below… Source: Twitter launches new ‘Birdwatch’ initiative to combat misinformation
  10. Verified Twitter accounts hacked in $580k ‘Elon Musk’ crypto scam Threat actors are hacking verified Twitter accounts in an Elon Musk cryptocurrency giveaway scam that has recently become widely active. There is nothing new about cryptocurrency scams on Twitter, especially ones pretending to be giveaways from Elon Musk. In 2018, scammers raked in $180,000 using a successful Elon Musk giveaway scam promoted on Twitter. Over the past week, security researcher MalwareHunterTeam has seen an uptick in verified Twitter accounts hacked in a scam promoting another fake Elon Musk cryptocurrency giveaway. These accounts will reply to tweets, like Elon Musk's below, and promote a scam where Musk is allegedly giving away free cryptocurrency. Tweets promoting fake Elon Musk crypto scams The tweets will contain links that redirect to Medium article promoting the fake giveaway. The articles contain further links to the scam landing pages that state if you send bitcoins to the listed address, they will send you back twice the amount. Fake Elon Musk/Tesla giveaway site While most of these tweets are using Elon Musk as their theme, some of the hacked accounts are also promoting fake giveaways from Tyler Winklevoss of Gemini Exchange. A tweet promoting a fake Gemini giveaway MalwareHunterTeam told BleepingComputer that most of the accounts hacked for this scam have been dormant without activity from the owner. "Big %, but not all. At least 2-3 was active within a few weeks to few days, of those one looked possible the last activities was not from the original owner but of course couldn't verify," MalwareHunterTeam explained. As Twitter disabled the ability to verify an account in July after the company was hacked in a massive cryptocurrency scam, verified accounts are in high demand for threat actors. The attackers are likely targeting dormant verified accounts not to be detected by the owner of the accounts. BleepingComputer contacted Twitter with questions about this recent scam but did not receive a response. Scammers rake in over $580k in one week This scam has been very successful for the threat actors. From the cryptocurrency addresses collected from landing pages seen by BleepingComputer and MetaMask, the threat actors have earned $587,000 in bitcoin. Bitcoin address Amount USD amount 1cD2EEwxjVYqwP83Pah21PLnqD3PMJc6i 2.62081802 $103,238.22 1CZA6v4XzPQmC599WmSvbvsu2r8UEUUbHi 0.44035153 $17,346.15 1MUSK1dQxb8UZeUUZrBMGofDaL3UeL97tW 0 0 1MusK1HoQi7ULXJdodirUsHiZfyN7z5puP 1.00200000 $39.470.38 1MUSK1Je69ucdgjgMrwHb7DR9YxgzEvSKQ 0.12708550 $5,006.10 15VnqLx6AC48wHyV86UnvTY4qYJV18gNfM 0 0 16ShxhEXxzFyyEFeRkNbJDEHb3zuvTdSuH 10.64921182 $419,489.49 The Etherium giveaway scams did not do as well, only generating $2,700 for the scammers. Ethereum address Amount USD amount 0xd2227F40458B8F1Bc2F2b07142541cDb792D3E12 2.21264498 $2,705.95 0x12b1036Ed346381fcCcacAB8b02491Ff37f87D82 0.000603109967162 0.73 0x38a19CA0b320012b1AC6227e391C11C34A12131b 0 0 0xB5E8780f0f2328288FCa05bb5D77065FEC2eBcA2 0.002780000000006 3.37 As there are many landing pages associated with this scam, it is possible that some have been more successfull in scamming people out of their assets. It is essential to understand that Elon Musk, Tesla, Gemini, or the Winklevoss twins will not send you cryptocurrency and that all these giveaways are scams. If you wish to give away your cryptocurrency, send it to us: 3Jw4LswKzGzQBRX5s12br6TvJNm5NpQhUV. You won't get any back, but you will at least fund journalism. Source: Verified Twitter accounts hacked in $580k ‘Elon Musk’ crypto scam
  11. How to deactivate your Twitter account You don’t need to keep doing this There’s no questioning the benefits of Twitter. It’s a convenient way to get your memes, world news, and pop culture hot takes all in one place. But being an active Twitter user requires sifting through a daily deluge of toxic characters, including white supremacists, bots, deepfakes, the president of the United States, and more. Plus, there’s no denying the stress and anxiety that the fast pace of Twitter’s news cycle, and the strain of constantly debating reply guys, can bring. Hear me out on this: you don’t actually have to use Twitter. I know it seems like everyone else is using it, but you can be the change you want to see in the world. You can just delete your account. Don’t worry: it doesn’t have to be permanent. If you find yourself feeling empty and directionless after doing this, you can get your account back up to 30 days after the fact. But if it ever gets to be too much again, just come back to this article and follow the steps. There’s a whole world outside of your timeline to explore. Deactivate your Twitter account in a browser If you’re on a computer or in a mobile browser, go to Twitter.com and log in to your account. To deactivate: On the web, click the “More” item on the bottom-left of the screen. On the mobile browser, tap your profile icon. Select “Settings and Privacy” and then “Account” At the bottom of the list, tap “Deactivate your account” You’ll see a screen informing you that doing this will, in fact, deactivate your account. Ignore it, and press “Deactivate” again at the bottom. Deactivate your Twitter account in the Twitter app If you’re using a smartphone, go to the Twitter app and make sure you’re logged in. Tap your profile icon in the top-left corner. A menu will pop out from the side. Tap “Settings and privacy” on the bottom. Tap “Account” at the top. In the account settings page, select “Deactivate your account” at the bottom. A few things to note: To reiterate: your account won’t be permanently gone after this process. Twitter retains your information for 30 days before deleting it permanently. To restore your account, just log back in. If you plan to create a new Twitter account with the same username and email address as the account you’re deactivating, switch the current account to a different username and email address before you deactivate If you want to download your Twitter data, do that before deactivating. Twitter can’t send data from inactive accounts. Google and other search engines cache results, meaning your old profile and tweets may still pop up in response to search queries on occasion. However, anyone who clicks them will get an error message. Deactivating your account can be a hassle, but to Twitter’s credit, it’s much more straightforward than the process of deleting some other services, such as Uber and Lyft. But where will I get my news and memes now? So Twitter is gone from your life. Congratulations! But what will you do now that you don’t have a never-ending barrage of tweets to scroll through? Here are some other things to try with your newfound free time. Mastodon. Mastodon is a decentralized version of Twitter that journalists have praised as “Twitter without Nazis.” Rather than one giant hot mess of a website, you log in to different “instances” of Mastodon, which are communities with varying purposes and themes. Instead of tweets, you post “toots,” and they have a 500-character limit. There’s also a built-in content warning feature. Reddit. There are certainly some toxic places on Reddit, but unlike Twitter, you’re not forced to pay attention to them. You can follow and subscribe to subreddits about anything that strikes your interest, from Star Trek to Furbies. Each subreddit has a clear set of rules, and they’re usually enforced. And if you get tired of a subreddit, you can leave it without leaving the website. Tumblr. Tumblr is similar to Twitter in many ways, but it has a couple of key differences. For one, follower counts aren’t public, so certain members aren’t privileged over others in discussions or debates because of their audience’s size. Replies to other people’s posts don’t show up on your feed, so you don’t have to watch other users’ arguments devolve. And there’s no character limit, so you can add some nuance to the opinions you post. Facebook. Yes, there are a lot of horrible, terrible, no good, very bad things about Facebook. But if you miss the ability to keep up with family and friends with Twitter, you can do that on Facebook, too. You won’t be constrained by the character limit, and you won’t have to worry about anyone outside of your friends list seeing your content. Newspapers. This might shock you, but plenty of media companies still sell physical newspapers and magazines. You can pick them up at newsstands, bookstores, coffee shops, and even have them delivered right to your mailbox if you buy a subscription. Rather than being bombarded all day, you’ll get your news in a digestible chunk each morning. The best part: you’ll look cool and sophisticated to everyone around you. Just go to The Verge. Don’t worry. We’re always here for you. Source: How to deactivate your Twitter account (The Verge)
  12. Twitter purged 70,000 QAnon accounts in three days Some accounts have lost thousands of followers as a result. Robert Nickelsberg via Getty Images Twitter says it’s purged more than 70,000 accounts for spreading conspiracy theories associated with QAnon. The company first began cracking down on QAnon over the summer, but now says it ramped up its enforcement following last week’s riot at the US Capitol. “Given the violent events in Washington, DC, and increased risk of harm, we began permanently suspending thousands of accounts that were primarily dedicated to sharing QAnon content on Friday afternoon,” the company says. “Since Friday, more than 70,000 accounts have been suspended as a result of our efforts, with many instances of a single individual operating numerous accounts. These accounts were engaged in sharing harmful QAnon-associated content at scale and were primarily dedicated to the propagation of this conspiracy theory across the service.” Twitter further notes that these actions “may have resulted in follower count changes in the thousands” for “some people.” The disclosure comes as a number of Republican lawmakers and others in Donald Trump’s orbit complained about losing thousands of followers over the weekend. In addition to QAnon, Twitter also says it will further crack down on misinformation about the 2020 election as false election claims has been used to incite violence. The platform has updated its civic integrity policy to reflect that ”repeated sharing of Tweets that receive warning labels” may result in permanent bans. Source: Twitter purged 70,000 QAnon accounts in three days
  13. President Trump has received many copyright complaints on Twitter, a tally that has just increased due to yet another DMCA takedown notice. However, a policy decision by Twitter means he's been able to circumvent the platform's repeat infringer rules. The big question is whether he'll continue getting special treatment moving forward or will Twitter eventually have to nuke his account? Every year billions of citizens help to develop the Internet by adding their own content, whether that’s substantial works such as videos, music or articles, or smaller but nevertheless important comments or snippets of information. Inevitably, however, some of these postings can infringe other people’s copyrights, resulting in rightsholders and anti-piracy companies issuing DMCA takedown notices to have them removed. The sting in the tail for many users, however, is that if they continually receive DMCA notices against their accounts on sites like YouTube, Twitch or Twitter, their accounts can be put in peril. Repeat Infringer Policies Can Be Selective Indeed, large numbers of users of these platforms alone have been permanently banned under so-called repeat infringer policies, where they are essentially told they’re no longer a responsible member of the community and must be banned. The reason, of course, is that the platforms themselves don’t want to be held liable should rightsholders decide to file what could be a massive copyright lawsuit. Interestingly, however, the old adage of “there’s one rule for them and another for us” is alive and well, particularly on Twitter and especially in respect of President Trump, who – despite receiving a stream of copyright complaints against his account – has managed to avoid a ban from Twitter. But after receiving yet another DMCA complaint this week, an interesting question raises its head. President Trump Receives Yet Another DMCA Complaint It is not uncommon for Donald Trump’s tweets to be either hidden by Twitter (when the platform believes the tweet carries an untruth, for example) or completely removed due to a copyright complaint. It has happened on many occasions in the past, largely due to allegations of him or his staff posting music in breach of copyright. And on December 28, it happened yet again. The content in question was a campaign-style video that celebrated the claimed accomplishments of the Trump administration. However, like many similar videos posted to Twitter in the past by Trump, it contained copyrighted music. In this case the track Hoedown by the late composer Aaron Copland. A few hours ago the DMCA notice in question was submitted by Twitter to the Lumen Database, which published the details in its archives. Three separate notices were filed targeting the same content but the one shown below carries the most detail. President Trump Receives Twitter’s ‘World Leader’ Treatment Of course, had this been the umpteenth time that a regular user had received a DMCA complaint, their Twitter account would’ve been toast. Instead, however, it appears that Twitter has once again invoked its ‘world leader policy‘ which allows people like Trump to do things that would end in mere mortals being banned from the platform. There are limits to what even ‘world leaders’ can do to avoid getting nuked from Twitter but thus far, Trump has managed to avoid the banhammer. The big question now is for how long. President Trump: Soon To Be Plain Old Donald At noon on January 20, 2021, the presidency of Donald Trump will come to an end. No one will ever be able to remove his historic status as the 45th President of the United States but he will no longer be a world leader. As a result, on the same day (and as long as the company sticks to its own policies) Twitter will have to start treating the former president as plain old Donald Trump. This raises many questions, some of them of great significance. Strictly in terms of DMCA notices, President Trump already has way more than it would take for an ordinary citizen to get themselves banned from Twitter. On January 20, when he becomes ‘ordinary’ again, will those ‘strikes’ be consigned to the history books with no further action? That not only seems the most likely outcome but perhaps the most sensible too. Whatever one thinks of Trump’s presidency, records of his actions while in power are significant moments in time that simply do not warrant being erased from history. However, there are complications here too. Personal and Presidential Account Combined When Trump became president, he refused to give up his personal account, so @realdonaldtrump effectively became the presidential account. On January 20, however, that account will no longer be in the hands of a world leader, meaning that no more free passes should be available from Twitter. This means that starting then, if Twitter levels the playing field as it should, three more strikes and Donald Trump’s account should be done, just like anyone else’s would be. So Twitter is going to be left with a dilemma, should Donald Trump decide to continue posting stuff that results in DMCA notices. If the company keeps giving Trump the ability to sidestep copyright law, it could be held responsible for not terminating the account of a known repeat infringer. However, if it bans his account, all of the tweets from his presidency will disappear with it. Clearly and for the sake of history, that can’t happen. However, the law is the law so if any copyright holders decide to get fired up, Twitter could find potentially itself in an interesting legal position. Of course, there’s always the chance that no more infringements or alleged infringements will occur, effectively solving the problem for them. Only time will tell which way things go but at the very least, popcorn should be kept on standby in the new year. If only to see how many more notices will come in before the protective shield is taken away. Source: TorrentFreak
  14. Facebook and YouTube detailed their anti-piracy measures during a Senate Judiciary Subcommittee on Intellectual Property hearing yesterday. To the frustration of lawmakers, Twitter was noticeably absent. The RIAA had little positive to say about the social media platform either, accusing it of doing nothing to stop "industrial-scale" piracy on its network. At the same time, domain registrars were accused of protecting pirates. The US Senate’s Judiciary Subcommittee on Intellectual Property is looking for better ways to tackle the ever-present threat of online piracy. Specifically, it’s working with various stakeholders to see if the DMCA can be improved to better suit today’s online environment. During a hearing yesterday, Senators received input from various stakeholders on the role of voluntary agreements and existing anti-piracy technologies. YouTube, for example, explained its Content-ID system and Facebook showed how its Rights Manager tool helps copyright holders. Twitter Refused to Attend Twitter was also invited to testify but the company refused to attend. This frustrated lawmakers, including Senator Thom Tillis, who repeatedly asked Twitter to join the discussion. When that didn’t happen Tillis sent a series of written questions, but the “non-answers” the company sent back only appear to have made things worse. The lawmakers are not alone in their critique of Twitter. As expected, they were fully supported by the RIAA, which was present to represent the music industry. RIAA chairman and CEO Mitch Glazier specifically mentioned the social media platform in his opening statement. Glazier argued that the current takedown system is highly ineffective and he used Twitter as an example. Over the past year, the RIAA has tried to keep a single music track off Twitter, but despite thousands of notices, it kept reappearing. “As a result, over a 10-month period, RIAA had to send notices for nearly 9,000 infringements of that same track – let me repeat that. We had to send 9,000 notices over a 10-month period for the same exact track. Unfortunately, we must do this all the time for hundreds of tracks on many different services,” Glazier said. Hiding Behind the Safe Harbor The RIAA would like Twitter and other platforms to keep infringing files offline indefinitely. A so-called takedown and staydown policy. In addition, copyright holders should be allowed to effectively monitor and report infringements. However, companies such as Twitter prefer to do very little and hide behind their safe harbor protection, Glazier said. “They could solve the piracy problem voluntarily tomorrow if they had the will and incentive to do so. Unfortunately, the DMCA safe harbors have been interpreted to apply so broadly that platforms do not have the business incentive to participate in a balanced system.” RIAA CEO Mitch Glazier The Twitter-bashing continued during the questioning round. Senator Mazie Hirono stressed that Twitter hasn’t shown to be a “willing partner” for copyright holders and asked Glazier to elaborate. RIAA’s CEO gladly complied and said that the music industry has sent more than three million notices to Twitter over the past two years, identifying 20,000 works. That’s an average of 150 notices per track, and things aren’t improving. Industrial Scale Piracy “This is piracy on an industrial massive scale. This is not some small problem,” Glazier said. “Unlike Facebook and YouTube, they have done nothing to at least try to build tools, or to help prevent what is by its nature a viral system where piracy can spread literally in microseconds.” The takedown efforts are complicated because the RIAA and its members don’t have an effective system to search Twitter for copyright infringements. The social media platform is willing to offer this, but not for free. “They really don’t offer us the ability to search their universe for infringements. We have asked for it many many times and they want to charge us,” Glazier said. “And then when we send them notices it can take anywhere between four hours and four days to take one thing down while we’ve got millions of pieces spreading at the same time. It’s a huge problem,” he adds. Twitter was not the only company to be called out. Senator Mazie Hirono also asked RIAA’s CEO about the role of domain name registrars, which offer services to pirate sites. Again, Glazier said that this is a huge problem. Domain Registrars Protect Pirates “Domain name registrars and their role in allowing piracy to happen through their systems is a huge problem. Very few domain name registrars are doing very little. Both at the registrar and at the registry level.” Glazier notes that there are voluntary agreements with a select group of domain registrars. However, most simply do nothing. They simply keep pirate domains online. And when copyright holders ask them to help identify bad actors, they refuse to cooperate. “When we go to them and say: ‘help us to find the pirates’ so we can go against them directly, they won’t give the name of the pirate. They hide their identity and help them become anonymous and they say that it’s because of privacy laws. That they need to protect the criminals. Which is ridiculous.” “Privacy laws are meant to protect consumers, they are not meant to protect criminals,” Glazier adds. If Not Voluntary, Then… The RIAA would like the law to make it clear that intermediaries, including domain registrars and registries, have to do more. The same is true for services that host content. The current takedown process simply doesn’t cut it, it’s a sham. While the hearing was supposed to be about voluntary and private agreements to help fight piracy, the threat of stricter regulation may be needed. The RIAA applauded the work of Facebook and YouTube but, reading between the lines, Glazier suggests that Twitter and other companies may need a bigger push from lawmakers to come to the table. Source: TorrentFreak
  15. Twitter makes it harder for criminals to hack your account Hardware security keys can now be used for mobile logins (Image credit: Shutterstock) Twitter has released a new update that allows hardware security keys to be used when logging in from mobile devices. The social network confirmed that switching to a new security protocol last year has meant that it is now able to offer the same level of robust protection to mobile users as it does to those logging in via desktop PCs and laptops. Hardware security keys were initially rolled out by Twitter in 2018, allowing desktop users of the social media platform to utilize a physical authentication option. However, some technical limitations meant that this approach wasn’t supported outside of the Twitter web app. Twitter has now confirmed that following the decision to adopt the WebAuthn security protocol in May last year, it is now in a position to offer hardware security keys to mobile account users. Security is key Hardware keys have become increasingly popular as a security tool in recent times as they make it practically impossible for some forms of cyberattack to take place. Earlier this year, for example, Twitter provided its own staff with security keys in response to a hack that allowed attackers to spread a cryptocurrency scam. What’s more, there is a growing acceptance that other forms of two-factor authentication, particularly those that use SMS messaging or voice calls, remain vulnerable. Hardware security keys are also more widely available today, with some specifically catering to mobile devices. Although the launch of security keys for mobile logins will be welcomed, it will probably not be enough to restore Twitter’s damaged reputation in the world of online security. Its employees recently came top of Dashlane’s list of the worst password offenders of 2020. Via TechCrunch Twitter makes it harder for criminals to hack your account
  16. Yet another President Trump tweet has been removed following a complaint. This one, however, is now part of a copyright lawsuit filed by British singer-songwriter Eddy Grant over the unlicensed use of his 1982 song 'Electric Avenue'. According to the complaint, which demands up to $150,000 in damages, the video containing the track remained live on Twitter, despite demands it was taken down. For the overwhelming majority of Twitter users, receiving even a very small number of copyright complaints against their account can mean its loss, with Twitter invoking its repeat infringer policy to avoid liability under the DMCA. For US President Donald Trump, however, special treatment is available on the platform. While contentious tweets do get removed, Trump’s account remains intact, despite a steady stream of rightsholders filing DMCA notices. Yesterday, however, one of his allegedly-infringing tweets resulted in more robust action. Allegedly-Infringing Tweet Was Posted in August With the 2020 United States presidential election campaign in full swing, Trump is taking every opportunity to paint Democratic opponent Joe Biden in an unfavorable light. These political attacks often take place via Twitter and last month Trump kept up the pressure, posting an animated video of a speedy train carrying his campaign logo ahead of Joe Biden on a railroad handcar, struggling to keep up. While that kind of imagery is nothing new in US politics and seems to have been custom-created, the background music in the video – the 1982 hit ‘Electric Avenue’ by British singer-songwriter Eddy Grant – was a previously-existing work. In fact, according to a lawsuit filed by the artist in a New York court yesterday, the use of the track was an act of blatant copyright infringement. Copyright Infringement Lawsuit Filed in New York The complaint, filed in the Southern District of New York, has Edmond Grant, two companies named Greenheart Music Limited (one based in the UK, the other Antigua, both owned by Grant) suing both Donald Trump and his campaign, Donald J. Trump For President Inc. The complaint states that after Trump tweeted the video on August 12, the next day Grant and Greenheart Music sent a letter to the defendants demanding the removal of the video and insisting that they refrain from using Electric Avenue moving forward. The lawsuit further alleges that at the time of its filing on September 1, the video was still available on Twitter. This is curious since according to information published by the Lumen Database, on August 13 Twitter received a DMCA takedown notice from Sony/ATV Music Publishing demanding the removal of the tweet. It has now been actioned with the offending tweet being removed, but Lumen only received a copy from Twitter today, perhaps suggesting something unusual with its processing. “Plaintiffs’ Recording, which embodies the Composition, can be heard on the Infringing Video starting at the 15 second mark and continues for the duration of the video. The Infringing Video therefore makes unauthorized use of the Composition and the Recording and infringes upon Plaintiffs’ copyrights in both,” the complaint reads. “Defendants’ conduct is unlawful; it is proscribed as such by the United States Copyright Act. Neither the President nor the Company is above the law,” it adds. A Very Popular Video, Complaint Alleges According to estimates presented by the plaintiffs, the video has been viewed more than 13.7 million times, “liked” more than 350,000 times, and re-tweeted 139,000 times. This, despite Trump and his campaign being put on notice via an August 13 letter sent by Grant’s attorney to cease-and-desist their infringing conduct. “Defendants have failed and/or refused to comply with Plaintiffs’ demands set forth in the August 13, 2020 letter, have continued to infringe Plaintiffs’ copyrights in the Composition and the Recording, and, upon information and belief, will continue to infringe Plaintiffs’ copyrights in the Composition and the Recording unless enjoined by this Court,” the complaint adds. Permanent Injunction and Damages Describing the actions of Trump and his campaign as “willful and intentional”, the lawsuit demands a permanent injunction to prevent further infringement plus a damages amount to be determined at trial. That could range from a minimum of $750 per infringement but could stretch to $150,000 per infringement in statutory damages, plus costs and attorneys’ fees, the complaint warns. Interestingly, the cease-and-desist sent by Grant’s legal team on August 13 offered to settle the matter quickly, in order to avoid the relatively expensive option of a lawsuit. Whether that option remains on the table is unclear but from its text, it appears that Grant was personally upset, not just by the alleged infringement of Electric Avenue, but also by the context in which it was used. Perhaps More Than ‘Just Another’ Copyright Lawsuit Electric Avenue was written by Grant in response to the now-historic riots that took place in Brixton, London, during 1981. They were widely attributed to racism, poverty, and tensions between black youths and the mainly white police force of the time. The cease-and-desist sent by Grant’s team in August suggests that the use of Electric Avenue in the Trump campaign video “indicates a fundamental misunderstanding of the very meaning of the underlying work” and notes that just by being affiliated with Trump’s campaign, Grant’s reputation is being damaged. As a result, a large response could follow. “If you know my client’s reputation then you know that this Infringing Use in connection with the name ‘Trump’ in a political context is a serious transgression and could subject you to upwards of $100,000,000 in monetary damages,” the letter warned. The full complaint and August cease-and-desist letter are available here and here (pdf) Source: TorrentFreak
  17. Twitter claimed it was reversing course late Thursday and would no longer forbid users from tweeting links to websites containing hacked material—so long as the hackers themselves weren’t the ones doing the sharing. “We will no longer remove hacked content unless it is directly shared by hackers or those acting in concert with them,” said Twitter general counsel Vijaya Gadde. The decision—a response to the conservative uproar over the blocking of an unverified, self-contradictory, and error-filled smear piece about a presidential candidate weeks before an election—would have brought Twitter’s policies more in line with how U.S. law treats journalists who republish stolen material; which is to say, it generally (but not always) protects their right to do so, provided they aren’t involved in the actual stealing. Unfortunately, it turns out Twitter’s decision to abolish the rule is being unequally applied, which is also sort of fitting. The rule itself was never fairly administered. The best obvious example of Twitter selectively enforcing the rule is WikiLeaks, which exists solely to publish stolen secrets; many, if not most, pilfered electronically. If a reporter had emailed a Twitter spokesperson last week asking if the platforms bans accounts that disseminate hacked emails, the spokesperson would have said “yes, we do,” and offered a link to the company’s rules. But if the same reporter then asked, “Well, what about all those stolen Democratic emails from 2016?” the spokesperson would have quietly backed away from their keyboard and maybe gone outside for a smoke. This is exactly how Twitter responded to me in June when it decided to prevent users from sharing links to the website ddosecrets.com. The website, run by a handful of journalists and transparency activists operating under the name DDoSecrets, is still banned by Twitter, even though CEO Jack Dorsey has claimed doing so is “wrong.” (Go ahead and try to tweet it yourself.) Twitter also banned the @DDoSecrets account, and it remains banned today. Twitter took aggressive action against DDoSecrets for publishing one of the largest repositories of leaked U.S. law enforcement files—some 270-gigabytes worth of documents from more than 200 police departments dating as far back as 1996. A decent portion, comprising things like outdated training manuals and old FBI bulletins, are completely benign, if not objectively boring. Crime is down, after all, and 90 percent of being a cop is learning how to cope with sitting on your ass all day. After the announcement by Twitter on Thursday, I reached out to ask why the @DDoSecrets account was still suspended and why users are still banned from posting links to its website. Twitter did not respond. Not even to tell me it was “working on it.” I also asked why Twitter had banned users from tweeting links to another of DDoSecrets’ websites, AssangeLeaks.org, which doesn’t actually contain any stolen or hacked material. According to Lorax Horne, the site’s editor, Twitter banned the URL when the page displayed nothing but a countdown clock. Today it only offers links to 10-year-old chat logs—potentially evidence the U.S. government is using in WikiLeaks founder Julian Assange’s extradition case. “No, they were not hacked,” Horne said of the chat logs. To no avail, DDoSecrets has filed multiple appeals seeking clarification on how Twitter’s rules are enforced. “They blocked our whole fu**ing website and every subsequent website we published,” said Horne. “Reddit also blocks our URL, now. But Twitter blocked us first, so get a special trophy.” Twitter’s silence is presumably the result of having already gotten what it wanted: A slew of headlines this morning declaring something that is just patently untrue. Source
  18. NEW YORK (Reuters) - Twitter Inc suffered from cybersecurity shortfalls that enabled a “simple” hack attributed to a Florida teenager to take over the accounts of several of the world’s most famous people in July, according to a report released on Wednesday. The report by New York’s Department of Financial Services also recommended that the largest social media companies be deemed systemically important, like some banks following the 2008 financial crisis, with a dedicated regulator monitoring their ability to combat cyberattacks and election interference. “That Twitter was vulnerable to an unsophisticated attack shows that self-regulation is not the answer,” said Linda Lacewell, the financial services superintendent. Twitter did not immediately respond to a request for comment. It has acknowledged that some employees were duped into sharing account credentials prior to the hack. New York Governor Andrew Cuomo ordered a probe following the July 15 hack of celebrity Twitter accounts, in an alleged scam that stole more than $118,000 in Bitcoin. Those whose accounts were hacked included U.S. presidential candidate Joe Biden; former President Barack Obama; billionaires Jeff Bezos, Bill Gates and Elon Musk; singer Kanye West, and his wife Kim Kardashian, the reality TV star. Lacewell said hackers obtained log-in credentials after calling several employees, pretending to work in Twitter’s information technology department, and claiming to be responding to problems with the company’s Virtual Private Network, which had become common because employees were working from home. “The extraordinary access the hackers obtained with this simple technique underscores Twitter’s cybersecurity vulnerability and the potential for devastating consequences,” the report said. Twitter’s lack at the time of a chief information security officer also made the San Francisco-based company more vulnerable, the report said. Florida prosecutors said Graham Ivan Clark was the mastermind behind the hack, and charged the 17-year-old Tampa resident as an adult with 30 felonies. Clark has pleaded not guilty. Federal prosecutors charged two others with aiding the hack. Source
  19. Twitter launches new API as it tries to make amends with third-party developers Wooing developers with a new API Illustration by Alex Castro / The Verge Twitter is making it easier for businesses, academics, and third-party developers to build on its platform with the launch of its API v2 today. The company announced the new API last month, but as the news arrived the day after it was hit by one of the most devastating hacks in social media history, it decided to delay the launch. Notably, Twitter is presenting the API v2 not only as a way to deliver new features faster, but as something of a reset in its long and fractious relationship with the app’s developer community. The API v2 is the first complete rebuild of Twitter’s API since 2012, when the company famously began limiting how third-party developers could build on its product. Prior to this, outside developers could more or less replicate and customize the Twitter experience in their own clients. But as Twitter focused more on its advertising business, it apparently decided it didn’t want to split its user base. It began slowly squeezing out third-party devs, blocking them from new features like polls and group DMs, and shepherding users toward the company’s own apps. Businesses were killed and developers weren’t happy. Now, though, Twitter is trying to rebuild some of these bridges. The API v2 offers third-party developers access to features long absent from their clients, including “conversation threading, poll results in Tweets, pinned Tweets on profiles, spam filtering, and a more powerful stream filtering and search query language.” There’s also access to a real-time tweet stream, rather than forcing third parties to wait before serving new tweets. This should mean that, following the API v2 launch, third-party Twitter clients like Tweetbot and Twitterrific can begin integrating these features, though there are some caveats. The big is one is that Twitter is reorganizing its API access along three levels. Only the basic, free level is launching today, and that has limits on how many API calls developers can make (aka how frequently their software can ping Twitter for data). The next level of access, which Twitter is calling “elevated,” won’t have the same restrictions, but it will cost users, and Twitter isn’t announcing pricing just yet. The company does say, though, that it expects 80 percent of developers on its platform will have their needs met by the basic tier. The new API system puts different products in the same platform, each with different access levels. Only the free basic access level launches today. Image: Twitter Before the details are shared, it’s difficult to say what changes will happen to third-party clients, Ged Maheux, co-founder of Twitterific’s parent company Iconfactory, tells The Verge. He says the new API is “potentially very good for third party Twitter clients,” but that Iconfactory is taking a “wait and see” approach until they know details, particularly pricing. But Maheux says he and his colleagues have also been impressed by Twitter’s conciliatory approach to developers. “Over the last few years, Twitter hasn’t been great and they know it. But they fully recognize and admit it,” he says. “After so long being a third or fourth class citizen with Twitter, it’s refreshing.” The new API is about more than just third-party Twitter clients, though. A whole range of businesses and services depend on access to Twitter’s data, including analytics firms like Spiketrap and Social Market Analytics, single-use bots like the House of Lords Hansard bot and Emoji Mashup bot, and power-user tools like TweetDelete, Block Party, and Tokimeki Unfollow. Twitter also offers an incredibly rich source of data for academics studying large-scale social trends. Researchers uses Twitter’s API for a variety of purposes, from gauging flood levels from tweets to tracking the spread of online hate speech. Twitter says it wants to encourage more of these sorts of applications by making its API ecosystem more accessible. A new onboarding wizard, for example, reduces the number of fields third parties have to fill out to get their hands on API keys from 10 to just one, while new search tools to find support documentation and a new centralized support page will make it easier for developers to find help when they need it. As Twitter’s Alyssa Reese put it in a blog post on the changes: “You see, we want developers to get moon-eyed when they talk about our documentation. To have error messages that are so helpful they’re almost as pleasant as getting a handwritten letter in the mail. Our aim is to be a company that other developer platforms reference when they are looking for inspiration (and we know we have a way to go).” Unifying API access should also help users. Previously, Twitter’s API was split into three platforms: standard (free), premium (self-serve paid), and enterprise (custom paid). But as Twitter itself admits, migration between these tiers was “tedious.” The new API replaces these tiers with “product tracks” in a single platform, with these products then split into the different tiers of access described above. Although the API v2 is undoubtedly a big launch for Twitter, the company is stressing that it’s a work in progress. It’s calling the current phase “early access” to emphasize the evolving nature of the API, and it’s encouraging developers to look over its new public roadmap and offer their thoughts on upcoming features. Twitter, then, is recognizing that fixing any troubled relationship starts with a conversation. Twitter launches new API as it tries to make amends with third-party developers
  20. Twitter rolls out reply-limiting feature to everyone Last week, Twitter's feature that allows you to choose who can reply to your tweets became available on iOS and the web. Today, that capability is available on Android as well, expanding the feature to everyone. Suzanne Xie, Director of Product Management at Twitter, announced today the feature's wider availability. In May, the micro-blogging site started testing letting users limit the people who can respond to their tweets. Xie noted that this capability is meant to provide users "more control over the conversations they start". You can set the limit to any of the three types of audiences. The default setting will make your tweet available for everyone to reply to. The other two options are people you follow and the people you mention. The option to set restrictions will show up when you click or tap on the compose button. Depending on your selection, the appropriate labels will appear for your tweet. In addition, the reply icon will be grayed out for users who can't reply to it, although they still can view, retweet, retweet with a comment, like, or share that tweet. Studies conducted and feedback gathered by Twitter since testing the feature revealed that the ability to limit replies to tweets helps "some people feel safer and could lead to more meaningful conversations, while still allowing people to see different points of view". Moving forward, the firm is planning on an easier way of letting you find the entire discussion through retweets with comments in order to help you "see different perspectives". It's also developing a new form of label that will let people more easily see tweets with these settings. And in the coming months, the service plans to allow you to invite more people to join the conversation and clear notifications if you’re invited to a conversation. Twitter rolls out reply-limiting feature to everyone
  21. Twitter fixes vulnerability in its Android app that could have exposed DMs Twitter revealed today a vulnerability that might have dealt yet another major blow to its security posture. The micro-blogging site has announced that it recently fixed a security issue with its Android app that could have allowed attackers to access your Direct Messages and other private data through a malicious app. The vulnerability is related to a security issue with Android that affected only versions 8 and 9. Twitter noted that the security flaw could circumvent Android's system permissions that safeguard against unauthorized access to private data. It turns out that Google fixed the issue in October 2018 through a security patch, which has already been made available to 96% of Twitter users on Android. For now, Twitter found no evidence that this vulnerability was exploited. However, the company is not completely certain that this will always be the case, so it has updated its Android app to prevent external apps from gaining access to Twitter's in-app data. In addition, it is sending out in-app notifications to those who might have been affected, requiring them to update their app to its latest version. Finally, Twitter vowed to identify changes to its processes to avoid issues like this in the future. Though the vulnerability did not affect the service's web and iOS apps, the alert has also been sent out via Twitter's web version. Twitter fixes vulnerability in its Android app that could have exposed DMs
  22. Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker Perhaps fittingly, a Web-streamed court hearing for the 17-year-old alleged mastermind of the July 15 mass hack against Twitter was cut short this morning after mischief makers injected a pornographic video clip into the proceeding. 17-year-old Graham Clark of Tampa, Fla. was among those charged in the July 15 Twitter hack. Image: Hillsborough County Sheriff’s Office. The incident occurred at a bond hearing held via the videoconferencing service Zoom by the Hillsborough County, Fla. criminal court in the case of Graham Clark. The 17-year-old from Tampa was arrested earlier this month on suspicion of social engineering his way into Twitter’s internal computer systems and tweeting out a bitcoin scam through the accounts of high-profile Twitter users. Notice of the hearing was available via public records filed with the Florida state attorney’s office. The notice specified the Zoom meeting time and ID number, essentially allowing anyone to participate in the proceeding. Even before the hearing officially began it was clear that the event would likely be “zoom bombed.” That’s because while participants were muted by default, they were free to unmute their microphones and transmit their own video streams to the channel. Sure enough, less than a minute had passed before one attendee not party to the case interrupted a discussion between Clark’s attorney and the judge by streaming a live video of himself adjusting his face mask. Just a few minutes later, someone began interjecting loud music. It became clear that presiding Judge Christopher C. Nash was personally in charge of administering the video hearing when, after roughly 15 seconds worth of random chatter interrupted the prosecution’s response, Nash told participants he was removing the troublemakers as quickly as he could. Judge Nash, visibly annoyed immediately after one of the many disruptions to today’s hearing. What transpired a minute later was almost inevitable given the permissive settings of this particular Zoom conference call: Someone streamed a graphic video clip from Pornhub for approximately 15 seconds before Judge Nash abruptly terminated the broadcast. With the ongoing pestilence that is the COVID-19 pandemic, the nation’s state and federal courts have largely been forced to conduct proceedings remotely via videoconferencing services. While Zoom and others do offer settings that can prevent participants from injecting their own audio and video into the stream unless invited to do so, those settings evidently were not enabled in today’s meeting. At issue before the court today was a defense motion to modify the amount of the defendant’s bond, which has been set at $750,000. The prosecution had argued that Clark should be required to show that any funds used toward securing that bond were gained lawfully, and were not merely the proceeds from his alleged participation in the Twitter bitcoin scam or some other form of cybercrime. Florida State Attorney Andrew Warren’s reaction as a Pornhub clip began streaming to everyone in today’s Zoom proceeding. Mr. Clark’s attorneys disagreed, and spent most of the uninterrupted time in today’s hearing explaining why their client could safely be released under a much smaller bond and close supervision restrictions. On Sunday, The New York Times published an in-depth look into Clark’s wayward path from a small-time cheater and hustler in online games like Minecraft to big-boy schemes involving SIM swapping, a form of fraud that involves social engineering employees at mobile phone companies to gain control over a target’s phone number and any financial, email and social media accounts associated with that number. According to The Times, Clark was suspected of being involved in a 2019 SIM swapping incident which led to the theft of 164 bitcoins from Gregg Bennett, a tech investor in the Seattle area. That theft would have been worth around $856,000 at the time; these days 164 bitcoins is worth approximately $1.8 million. The Times said that soon after the theft, Bennett received an extortion note signed by Scrim, one of the hacker handles alleged to have been used by Clark. From that story: “We just want the remainder of the funds in the Bittrex,” Scrim wrote, referring to the Bitcoin exchange from which the coins had been taken. “We are always one step ahead and this is your easiest option.” In April, the Secret Service seized 100 Bitcoins from Mr. Clark, according to government forfeiture documents. A few weeks later, Mr. Bennett received a letter from the Secret Service saying they had recovered 100 of his Bitcoins, citing the same code that was assigned to the coins seized from Mr. Clark. Florida prosecutor Darrell Dirks was in the middle of explaining to the judge that investigators are still in the process of discovering the extent of Clark’s alleged illegal hacking activities since the Secret Service returned the 100 bitcoin when the porn clip was injected into the Zoom conference. Ultimately, Judge Nash decided to keep the bond amount as is, but to remove the condition that Clark prove the source of the funds. Clark has been charged with 30 felony counts and is being tried as an adult. Federal prosecutors also have charged two other young men suspected of playing roles in the Twitter hack, including a 22-year-old from Orlando, Fla. and a 19-year-old from the United Kingdom. Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker
  23. Tweetz is an open-source Twitter client for Windows Last week, we told you how to get the old Twitter interface back, using GoodTwitter 2. Before I came across it, I had been looking for extensions and other solutions. One of these was a Twitter client, called Tweetz. It's an an open-source program for windows, that you can use to view your timeline from your desktop. You cannot customize the location where Tweetz gets installed. When the program is run, you will see the following screen. It tells you click on the "Get Pin" button to authorize your account. Hit the button and a new tab should open in your browser. Login to Twitter and authorize the application. Here's the list of permissions it requires. It's pretty much standard for a Twitter client to have such options. Twitter will display a PIN that you'll need to enter in Tweetz. Paste it in the field that's available and click on the sign in button. Tweetz has a minimal interface with a dark theme. You can resize the window to make it larger or smaller. The navigation bar at the top of the window has five buttons. Clicking the Home button takes you to your timeline. The heart icon lists tweets that you've liked. The magnifying glass is the Search shortcut. Oddly, the "@ mentions" are located on the search page, so if you want to see tweets that you've been tagged in (replies from other users), you've to click on the @ button to fetch the mentions. It would've been better if it had its own shortcut on the nav bar. The gear cog icon is used to access the program's settings. You may hide images, profile pictures, extended content, your username in the title bar, tweets that contain sensitive content. Tweetz can be set to stay on top of other programs, start automatically with Windows, minimized to the system tray. Drag the font size slider towards the right to adjust the text size. There are 3 themes in Tweetz: Light, Nord and Dark. The application stores its settings in a text file. The settings page lists a few tips on how to control the program. Right-click (on any page) to scroll to the top, click on a timestamp to open the link in your browser, Ctrl + N to post a new tweet, etc. Speaking of, hit the tweet button in the top right corner to post a tweet. The + button in the tweet compose window can be used to add images (GIF, JPG, PNG, WEBP formats) or videos (MP4). You can use Tweetz to post Tweets, retweet, retweet with comment, reply to tweets, like tweets, and follow users from the timeline. The program automatically pauses the timeline when you scroll down, and allows you to read the currently loaded tweets. Mouse over a link to view the full URL, or over a profile picture or username to view the profile info. Click on an image to view a larger version of it, that opens in a pop-up window. It has 2 buttons that lets you copy the picture's URL or the image to clipboard. To return to your timeline, click on the image again. Tweetz can play twitter videos too, and uses a pop-up player for it. Its controls are similar to the built-in image viewer. No program is perfect. Let's discuss the flaws of the program. There is no way to manage your Twitter account from within the program. Tweetz does not support lists, which may not be a deal breaker for many, but as a user with customized lists I was disappointed. The biggest drawback however is that when you click on a Tweet, a timestamp or a profile, it doesn't open a pop-up window to display the content. Instead, it opens the link in your default browser. The program is written in .NET Core. A portable version of Tweetz is available, it's called the self-contained version. Note: This review is not based on the latest version that was released a few days ago. I used version 2.6.2 from about two weeks ago. The program displays a "Consider donating" Tweet from the developer from time to time. It is displayed even if you aren't following him on Twitter. Tweetz is impressive, but I would've liked it more if it opened Tweets and profile pages in its interface, rather than sending them to the web browser. If I were to rate it in a point system, it definitely gets extra points simply because it. does not use the "modern Twitter interface". Landing Page: https://github.com/mike-ward/tweetz/releases Tweetz is an open-source Twitter client for Windows
  24. Twitter is building a subscription platform codenamed Gryphon Three years ago, Twitter considered offering subscriptions for its social media dashboard, TweetDeck. That service would have provided news alerts and analytics to customers willing to pay for a monthly fee, but it didn't materialize. Now, the company appears to be carrying on with its subscription push, if a new job listing is any indication (via VentureBeat). Twitter posted a job opening on its career portal in search for a "Senior Full-stack Software Engineer" who will join its new team, codenamed Gryphon. The listing reveals that the group is developing a subscription platform that can be reused by other teams in the future. It consists of web engineers working with both the payments and Twitter.com teams. The full-stack engineer will be responsible for Gryphon's payment and subscription client work. The team will be distributed across different locations including London, San Francisco, Boston, and New York. The subscription model is seen as a part of Twitter's efforts to explore additional revenue streams beyond advertising, which primarily contributes to its income. It's not clear, though, how the micro-blogging site plans to implement the subscription platform and what services it will offer. Twitter is building a subscription platform codenamed Gryphon
  25. Coinbase says it halted more than $280,000 in bitcoin transactions during Twitter hack The company blacklisted the bitcoin address Illustration by Alex Castro The cryptocurrency exchange Coinbase said that it stopped around 1,100 customers from sending bitcoin to hackers who gained access to high-profile Twitter accounts last week. Last Wednesday, over 100 Twitter accounts, some belonging to major companies like Apple and high-profile people like Vice President Joe Biden and Bill Gates, were hacked as part of a massive coordinated bitcoin scam. According to Twitter, the hackers were able to convince some of the company’s employees to use internal systems and tools to access the accounts and help the hackers defraud users into sending them bitcoin. According to Forbes, Coinbase and other cryptocurrency exchanges were able to stop some customers from sending bitcoin to the hackers by blacklisting the hackers’ wallet address. Specifically, Coinbase says it prevented just over 1,000 customers from sending around $280,000 worth of bitcoin during last Wednesday’s attack. Roughly 14 Coinbase users sent around $3,000 worth of bitcoin to the scam’s bitcoin address before the company moved to blacklist it, the company said. “We noticed the scam and began blocking transactions within a couple of minutes of the initial wave of scam posts,” a Coinbase spokesperson told The Verge on Monday. Twitter accounts belonging to cryptocurrency exchanges including Binance and Gemini were also targeted during Wednesday’s attack. Coinbase’s chief information officer told Forbes on Sunday that it learned of the scam shortly after tweets were posted from fellow exchanges’ accounts. As of Monday, Twitter is still investigating Wednesday’s attack. On Friday, the company put out a blog post confirming that 130 accounts were targeted and the hackers were able to initiative a password reset, log in to the account, and send tweets for 45 of those accounts. Twitter also said that the hackers were able to download account data belonging to eight unverified users. Coinbase says it halted more than $280,000 in bitcoin transactions during Twitter hack
  • Create New...