back to article If you use Twitter with Firefox in a shared computer account, you may have slightly spilled some private data on that PC

Twitter on Thursday warned of an esoteric bug that, in limited circumstances, allowed users' non-public profile information to potentially fall into the hands of other users. If you used Firefox on a shared PC to, for example, send or receive media in private Twitter messages, or download an archive of your profile that …

  1. Dan 55 Silver badge

    What the second tweet means

    1. Chrome done screwed up.

    2. Devs develop a website assuming Chrome is right and is the standard.

    3. Website does something different on Firefox.

    4. People assume Firefox is wrong.

    5. Devs may or may not fix the website bug.

    If they don't and the website is popular:

    6. Firefox changed to ape Chrome behaviour.

    This is why browser monoculture is a bad thing.

  2. Anonymous Coward
    Anonymous Coward

    And what would the mystery header be?

    See title.

    1. diodesign (Written by Reg staff) Silver badge

      Re: And what would the mystery header be?

      We're trying to find out - as soon as we know, we'll let you know.


  3. Anonymous Coward
    Anonymous Coward

    Hmm it's very likely malicious javascript could check for the existence of previously loaded objects in the cache and imply from enough of them data about your Twitter identity. Pick a set of commonly followed accounts, look for which have assets (like their profile icon) cached and which don't and use that bitfield as your persistent tracking id. Fucking websites are always doing stuff like this to try to track and spy on you to build a profile to sell ads better it's sick and perverted

  4. ThinkingMonkey

    Say it ain't so!

    So people logging into the same computer with the same username and password can see each other's data? No way!

    1. Blazde

      Re: Say it ain't so!

      I think this is literally the first time I've head the phrase "shared computer account", nevermind in the context of an attack vector

  5. AVee

    No shit Sherlock

    "...and to be cautious about the personal information you download on a computer that other people use."

    You don't even need this bug to track what other users are doing on a system with shared user accounts. If it's a system you can trust, this doesn't matter much. If not you can get screwed in many other ways...

    The one case where it might matter is if someone gains access to your system after the fact. In that case something may be stored on disk which shouldn't have been there. Although I doubt a bit of cached data from Twitter is going to be your biggest concern.

  6. big_D Silver badge

    Shared accounts...

    that is all ---->

  7. Waseef

    What’s included in the non-public Twitter information? My birthday, messages?

    1. diodesign (Written by Reg staff) Silver badge

      The media content of direct messages and probably stuff like birthdays.


POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like