All incidents
Twitter Data Leak: API ‘Defect’ Exposed Information of Over 200M Users - ClassAction.org
Summary
A proposed class action lawsuit alleges that a defect in Twitter's API allowed hackers to scrape personal data from over 200 million users between June 2021 and January 2022. The leaked information included usernames, email addresses, and phone numbers, which the lawsuit claims deanonymized users who sought to remain anonymous. The complaint accuses Twitter of violating its terms of service and a 2011 FTC settlement regarding user data protection. The lawsuit also criticizes Twitter's response to the breach, which downplayed the severity and scope of the incident. The data is now reportedly being sold on the dark web by cybercriminals.
Incident Details
Domain
Privacy & Surveillance
Unauthorized collection, tracking, or exposure of personal data and private information.
Harm Types
Unauthorized Surveillance
Mechanism
conduct
Platforms
Companies
Recipient
GroupTwitter users whose personal data (including usernames, email addresses, and phone numbers) was exposed through a defect in Twitter's API between June 2021 and January 2022
Dimensions
economicreputationalautonomy