Twitter Says Users' Phone Numbers Provided for Security 'Inadvertently' Used for Ad Purposes

The incident marks the latest security mishap for Twitter, but one that could carry with it some legal headaches

Advertisement
By Tony Romm, The Washington Post | Updated: 9 October 2019 10:06 IST
Highlights
  • May have mishandled users' email addresses, phone numbers: Twitter
  • We cannot say exactly how many people were impacted by this, says Twitter
  • "No personal data was ever shared externally"

Twitter said Tuesday that it may have mishandled an unspecified number of users' email addresses and phone numbers, allowing that data to be used "inadvertently" for advertising purposes.

The incident marks the latest security mishap for the social-networking company, but one that could carry with it some legal headaches. Federal regulators penalised Facebook earlier this year for a similar situation.

Advertisement

In a blog post, Twitter explained that users share email addresses and phone numbers with the company for safety and login verification purposes, such as two-factor authentication, which allows people to receive a one-time code that they input along with their password in order to access their account.

The trouble, however, stems from the fact that advertisers can upload their own contact lists to match their customers with Twitter's users. In doing so, Twitter said it "may have matched people on Twitter" to a marketer's list "based on the email or phone number the Twitter account holder provided for safety and security purposes."

"We cannot say with certainty how many people were impacted by this, but in an effort to be transparent, we wanted to make everyone aware," Twitter said. "No personal data was ever shared externally with our partners or any other third parties."

The incident could invite trouble for Twitter in Washington, where regulators who investigated and penalised Facebook for a series of privacy scandals took issue with its handling of phone numbers. In that case, the Federal Trade Commission alleged Facebook deceived users because it "did not disclose, or did not adequately disclose" that phone numbers provided through its security tool for the purpose of two-factor authentication "also would be used by Facebook to target advertisements to those users."

Advertisement

Adding to Twitter's potential troubles, the company finalised an agreement with the FTC in 2011 that alleged the company failed to protect users from security threats. The resulting settlement requires the company to maintain a comprehensive data security policy and refrain from misrepresenting the way it handles and protects users' data, violations of which could carry fines.

"Given that Facebook got dinged for this exact practice, I think it likely meets the threshold of material omission or even deception under Section 5 on its own. That's further compounded by the fact that Twitter is also under order already by the FTC, " said Ashkan Soltani, a former chief technologist at the FTC, citing the portion of law that prohibits unfair or deceptive acts and practices.

Advertisement

Twitter has revealed a number of additional data-security incidents this year. It told users that it may have "inadvertently" collected and shared some location data with an unnamed third-party partner. It also informed users of Twitter's Android smartphone app that a system issue turned off a setting that made their tweets private. Twitter did not disclose the number of users affected in either instance.

Perhaps the most significant security mishap came in August, however, when Twitter CEO Jack Dorsey had his personal account hacked. The move prompted Twitter to disable a feature that allowed users to tweet by text.

Advertisement

© The Washington Post 2019

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: Twitter
Advertisement

Related Stories

Popular Mobile Brands
  1. Vivo Y500 4G Makes Global Debut With an 8,100mAh Battery: See Price
  2. Samsung Galaxy Z Fold 8 Series Could Ship With This Notable Display Upgrade
  3. Top ACs from Carrier, Voltas and More Brands During Amazon's Prime Day Sale
  1. Apple Brings Back Card Payments for App Store and iCloud Transactions in India After Five Years
  2. Samsung Galaxy Z Fold 8 Series Tipped to Launch With a New Hinge to Minimise Display Crease
  3. Huawei Mate X8 Display, Camera Details Leaked Online; Mate XT 2 and Mate X8 Said to Launch With Kirin Processor
  4. Redmi Said to Be Working on 7-Inch 'Performance' Smartphone
  5. Bitcoin Trades Near Two-Week High as Crypto Investor Sentiment Improves
  6. iOS 27 System Prompt Reportedly Hints at Apple’s New Smart Wearable With Two Cameras
  7. Xiaomi Civi Series Discontinued With No Next-Generation Model Planned, Claims Tipster
  8. Apple’s Foldable iPhone to Hit Shelves Later Than Anticipated Due to ‘Manufacturing Challenges’, Analyst Claims
  9. Samsung Galaxy F70 Pro Bluetooth SIG Listing Suggests Its Launch Might Be Right Around the Corner
  10. iPhone Air 2 Design Leaked in New Renders That Point to Dual 48-Megapixel Cameras
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.