Australian 17-year-old blamed for Twitter chaos

A 17-year-old Australian schoolboy Wednesday said he unwittingly caused a massive hacker attack on Twitter which sent users to Japanese porn sites and took out the White House press secretary's feed.

Pearce Delphin, whose Twitter name is @zzap, admitted exposing a security flaw which was then pounced upon by hackers, affecting thousands of users and causing havoc on the microblogging site for about five hours.

Delphin, who lives with his parents in Melbourne, said he tweeted a piece of "mouseover" JavaScript code which brings up a pop-up window when the user hovers their cursor over the message.

But the idea was soon taken up by hackers who tweaked the code to redirect users to pornographic sites and create "worm" tweets that replicated every time they were read.

"I did it merely to see if it could be done ... that JavaScript really could be executed within a tweet," Delphin told AFP via email.

"At the time of posting the tweet, I had no idea it was going to take off how it did. I just hadn't even considered it."

Twitter apologised to its millions of users after the "mouseover bug" raged through the site, opening pop-up windows in Web browsers and automatically generating tweets from other accounts.

White House press secretary Robert Gibbs and Sarah Brown, wife of Britain's former prime minister Gordon Brown, were among those hit by the bug before engineers patched it up.

The "Netcraft" security website traced the malicious code back to Delphin, who said he got the idea from another user who employed a similar code to make his profile and tweets rainbow-coloured.

"After that, it seems like some of my followers realised the power of this vulnerability, and within a matter of minutes scripts had taken over my timeline," Delphin said.

The glitch was mainly used for pranks, but Delphin said it could have been used to "maliciously steal user account details".

"The problem was being able to write the code that can steal usernames and passwords while still remaining under Twitter's 140 character tweet limit," he said.

"Luckily, no one, as far as Twitter admits, actually used this to extract passwords from users."

Experts said the problem could have been exploited for more sinister purposes by hackers redirecting users to third-party websites containing malicious code, or for spam advertising.

Delphin was one of the first people in Australia to start using Twitter, back in 2006, and said the site had known about the problem for "months" but failed to patch it.

The teen is just a few weeks off graduating from high school and hopes to study law. He had not yet told his parents about the cyberstorm he'd created.

"I discovered a vulnerability, I didn't create a self-replicating worm. As far as I know, that isn't technically illegal," he said.

"Hopefully I won't get in trouble!" he added.

Twitter, which allows users to post messages of 140 characters or fewer, says it has over 145 million registered users firing off more than 90 million tweets a day.

It unveiled a major redesign of its website a week ago that is being slowly rolled out to users of the service across the globe. The company said the attack was not connected to Twitter's revamp.

Property
house + home
Arts and Entertainment
tvGame of Thrones season 5 ep 4, review - WARNING: contains major spoiliers!
Life and Style
Bats detect and react to wind speed and direction through sensors on their wings
tech
Arts and Entertainment
The Ridiculous Six has been produced by Adam Sandler, who also stars in it
filmNew controversy after nine Native American actors walked off set
Life and Style
ebookNow available in paperback
ebooks
ebookPart of The Independent’s new eBook series The Great Composers
Sport
Danny Jones was in the Wales squad for the 2013 World Cup
rugby leagueKeighley Cougars half-back was taken off after just four minutes
Life and Style
The original ZX Spectrum was simple to plug into your TV and get playing on
techThirty years on, the ZX Spectrum is back, after a fashion
News
Tiger Woods and Lindsey Vonn are breaking up after nearly three years together
peopleFormer couple announce separation in posts on their websites
Sport
football
Life and Style
Google celebrates Bartolomeo Cristofori's 360th birthday
techGoogle Doodle to the rescue
Arts and Entertainment
Haunted looks: Matthew Macfadyen and Timothy Spall star in ‘The Enfield Haunting’
tvThe Enfield Haunting, TV review
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

ES Rentals

    iJobs Job Widget
    iJobs Gadgets & Tech

    Recruitment Genius: Software Developer - C# / ASP.NET / SQL

    £17000 - £30000 per annum: Recruitment Genius: Developer required to join a bu...

    Recruitment Genius: Software Consultant / 1st Line Support

    £15000 - £25000 per annum: Recruitment Genius: As your knowledge grows you wil...

    Ashdown Group: Systems Engineer - Linux - Central London

    £40000 - £48000 per annum + Benefits: Ashdown Group: Systems Engineer - Linux ...

    Recruitment Genius: Technical Support and Sales Engineer - UC / M2M / IoT

    £20000 - £30000 per annum: Recruitment Genius: This leading provider of Cloud ...

    Day In a Page

    Fishing for votes with Nigel Farage: The Ukip leader shows how he can work an audience as he casts his line to the disaffected of Grimsby

    Fishing is on Nigel Farage's mind

    Ukip leader casts a line to the disaffected
    Who is bombing whom in the Middle East? It's amazing they don't all hit each other

    Who is bombing whom in the Middle East?

    Robert Fisk untangles the countries and factions
    China's influence on fashion: At the top of the game both creatively and commercially

    China's influence on fashion

    At the top of the game both creatively and commercially
    Lord O’Donnell: Former cabinet secretary on the election and life away from the levers of power

    The man known as GOD has a reputation for getting the job done

    Lord O'Donnell's three principles of rule
    Rainbow shades: It's all bright on the night

    Rainbow shades

    It's all bright on the night
    'It was first time I had ever tasted chocolate. I kept a piece, and when Amsterdam was liberated, I gave it to the first Allied soldier I saw'

    Bread from heaven

    Dutch survivors thank RAF for World War II drop that saved millions
    Britain will be 'run for the wealthy and powerful' if Tories retain power - Labour

    How 'the Axe' helped Labour

    UK will be 'run for the wealthy and powerful' if Tories retain power
    Rare and exclusive video shows the horrific price paid by activists for challenging the rule of jihadist extremists in Syria

    The price to be paid for challenging the rule of extremists

    A revolution now 'consuming its own children'
    Welcome to the world of Megagames

    Welcome to the world of Megagames

    300 players take part in Watch the Skies! board game in London
    'Nymphomaniac' actress reveals what it was really like to star in one of the most explicit films ever

    Charlotte Gainsbourg on 'Nymphomaniac'

    Starring in one of the most explicit films ever
    Robert Fisk in Abu Dhabi: The Emirates' out-of-sight migrant workers helping to build the dream projects of its rulers

    Robert Fisk in Abu Dhabi

    The Emirates' out-of-sight migrant workers helping to build the dream projects of its rulers
    Vince Cable interview: Charging fees for employment tribunals was 'a very bad move'

    Vince Cable exclusive interview

    Charging fees for employment tribunals was 'a very bad move'
    Iwan Rheon interview: Game of Thrones star returns to his Welsh roots to record debut album

    Iwan Rheon is returning to his Welsh roots

    Rheon is best known for his role as the Bastard of Bolton. It's gruelling playing a sadistic torturer, he tells Craig McLean, but it hasn't stopped him recording an album of Welsh psychedelia
    Russell Brand's interview with Ed Miliband has got everyone talking about The Trews

    Everyone is talking about The Trews

    Russell Brand's 'true news' videos attract millions of viewers. But today's 'Milibrand' interview introduced his resolutely amateurish style to a whole new crowd
    Morne Hardenberg interview: Cameraman for BBC's upcoming show Shark on filming the ocean's most dangerous predator

    It's time for my close-up

    Meet the man who films great whites for a living