Twitter gets 20 years' good security bond

Powered by SC Magazine
 

Settles over security claim.

Twitter has been barred from overstating the extent to which it can securely manage user information for the next 20 years in a settlement with the US Federal Trade Commission.

The micro blogging site had been investigated over two hacking incidents in 2009 in which 55 accounts were hijacked, including US President Barack Obama’s.

The accounts were hijacked after someone hacked into Twitter’s support team administration tools, the company admitted after the incidents occurred.

The FTC alleged the attacks exposed non-public information and information that users had designated as private, such as private Tweets.

The regulator took exception to the wording of Twitter’s security claims in its original privacy policy, which said it employed “administrative, physical and electronic measures designed to protect your information from unauthorised access”.

Twitter's subsequent versions, which can be found here, make no claims about the level of security it provides. 

The FTC also ordered Twitter to establish and maintain a “comprehensive information security program”, which would be assessed biannually by an independent auditor for the next decade.

Copyright © iTnews.com.au . All rights reserved.


Twitter gets 20 years' good security bond
 
 
 
Top Stories
Meet FABACUS, Westpac's first computer
GE225 operators celebrate gold anniversary.
 
NSW Govt gets ready to throw out the floppy disks
[Opinion] Dominic Perrottet says its time for government to catch up.
 
iiNet facing new copyright battle with Hollywood
Fighting to protect customer details.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  26%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  21%
 
End user computing (desktops, mobiles, apps)
  15%
 
Software development
  26%
TOTAL VOTES: 337

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  57%
 
No
  43%
TOTAL VOTES: 140

Vote