Twitter shuts down Tweetdeck to fix nasty vulnerability

tweetdeckIt’s been a rocky Wednesday so far for Tweetdeck, to say the least.

The popular Twitter-owned dashboard app has been hit with a nasty hack and shut down its service at about 10 a.m. PT today.

cross-site scripting vulnerability allowed hackers to remotely execute javascript code, resulting in thousands of Tweetdeck users reporting spammed pop-up windows and re-tweets. The vulnerability also allows hackers to access user Twitter accounts.

The hack seemed to affect those using the Chrome version of Tweetdeck vs. the desktop client. Regardless, it’s a good idea to log out of your Tweetdeck account until this issue is fixed.

We’ll update this story as we hear more. In the meantime, I’d recommend using Hootsuite as an alternative Twitter dashboard app.

Update, 11:03 a.m.

Looks like Tweetdeck is back:

However, some people are still having issues:

  • http://www.intrinsicstrategy.com/ FrankCatalano

    I, of course, will not mention that it appears two of the GeekWire team (including me) got hit with auto-RTed scripted pop-ups as we realized there was a hack.

  • Lucky

    The world is too crazy and insecure. Hackers can get very personal information that they need by hacking. Sometimes, they can even find out the password using special hack tools. It’s worth mentioning that hack can be very useful in certain condition. A child of my neighborhood behaved erratically some time ago, her parents used Micro keylogger to get her FB password to find that someone was trying to tempt her into taking drugs. That is terrible.