Twitter temporarily shut down its TweetDeck client on Wednesday evening, after a security glitch saw tens of thousands of its users unwittingly post a line of code.
The social media giant has since re-launched its application, and has apologised for any inconvenience caused to users during the episode.
To launch the attack, hackers reportedly took advantage of a “cross-site scripting”, or XSS, vulnerability in the TweetDeck system.
Initially, TweetDeck told users to log out and log back in, but when the fault remained, it shut down the application's access to tweets.
We've temporarily taken TweetDeck services down to assess today's earlier security issue. We'll update when services are back up.— TweetDeck (@TweetDeck) June 11, 2014
We've verified our security fix and have turned TweetDeck services back on for all users. Sorry for any inconvenience.— TweetDeck (@TweetDeck) June 11, 2014
Victims of the flaw included Labour opposition leader Ed Miliband, and BBC Breaking News’ Twitter account.
<script class="xss">$('.xss').parents().eq(1).find('a').eq(1).click();$('[data-action=retweet]').click();alert('XSS in Tweetdeck')</script>♥— *andy (@derGeruhn) June 11, 2014