According to Twitter, an undisclosed number of users had their direct messages leaked to third-parties for over a year.
People who were affected by the breach have been notified via a message on the platform, and Twitter has promised that the “bug” has now been fixed.
"The issue has persisted since May 2017," Twitter said, having discovered the problem on 10 September.
It’s not known how many people had their messages leaked, but Twitter said in a statement that it impacted fewer than 1% of users.
Luckily, the only direct messages that came under threat were between users and companies, meaning that the most embarrassing conversations are still locked up safe and sound (unless you have a thing for sending dick pics to PR departments, that is).
"We haven't found an instance where data was sent to the incorrect party," the company said.
"But we can't conclusively confirm it didn't happen, so we're telling potentially impacted people about the bug.
"If you were potentially involved, we’ll contact you today. We’re sorry that this happened."
Nick Pope is the Site Director of Esquire, overseeing digital strategy for the brand.
