Peiter Zatko claimed Twitter was riddled with security problems.
Recently, Peiter Zatko, a cybersecurity expertly who formerly served as the head of cybersecurity for social media platform Twitter, submitted a formal complaint about the site to the Securities and Exchange Commission, Federal Trade Commission and the Department of Justice. According to Zatko’s complaints, Twitter is full of numerous security vulnerabilities and shortcomings, all of which the site’s board is aware of and chooses not to address.
Zatko’s complaint list several major problems with Twitter’s security, including consistent, unannounced security breaches on a yearly basis, a lax attitude toward malevolent bot and spam accounts on the service, a lack of compliance with the FTC’s requirements on user data security, and instances of Twitter employees stealing and selling user information. Senator Dick Durbin of Illinois, chair of the Senate Judiciary Committee, said that if Zatko’s allegations are genuine, they ““may show dangerous data privacy and security risks for Twitter users around the world.”
“As Chair of the Senate Judiciary Committee, I will continue investigating this issue and take further steps as needed to get to the bottom of these alarming allegations,” Durbin said in the statement.
Twitter, for its part, dismissed Zatko and his allegations, calling his report “a false narrative” and noting that Zatko was removed from his position at the company due to “ineffective leadership and poor performance.” They added that his concerns about Twitter’s security are “riddled with inconsistencies and inaccuracies and lacks important context.”
