TweetDeck Has Been Hacked

The journalist’s best friend is has been hacked.

A “cross-site scripting” (XSS) vulnerability has been discovered on Twitter’s Tweetdeck client, leaving millions of users open to account hijacking and more. Twitter has shut down Tweetdeck while it fixes the problem, despite earlier promising that it had been fixed. The normal Twitter web interface, and other apps such as Echofon which use Twitter’s API, do not seem to be affected. Tweetdeck is aimed at professionals and provides a web- or app-based interface to Twitter with the ability to show multiple views of different searches and users.

I often run dozens of columns on various topics on TweetDeck, which has become indispensable for breaking news bloggers since the demise of Google Reader. So this sucks.