Sign Out Of TweetDeck: Vulnerability Leaves User Accounts Compromised

1.0Lifehacker Australiahttps://www.lifehacker.com.auEric Ravenscrafthttps://www.lifehacker.com.au/author/ericravenscraft-usa/Sign Out Of TweetDeck: Vulnerability Leaves User Accounts Compromisedrich600338<blockquote class="wp-embedded-content" data-secret="vKRiZxFJmN"><a href="https://www.lifehacker.com.au/2014/06/sign-out-of-tweetdeck-vulnerability-leaves-user-accounts-compromised/">Sign Out Of TweetDeck: Vulnerability Leaves User Accounts Compromised</a></blockquote><iframe sandbox="allow-scripts" security="restricted" src="https://www.lifehacker.com.au/2014/06/sign-out-of-tweetdeck-vulnerability-leaves-user-accounts-compromised/embed/#?secret=vKRiZxFJmN" width="600" height="338" title="“Sign Out Of TweetDeck: Vulnerability Leaves User Accounts Compromised” — Lifehacker Australia" data-secret="vKRiZxFJmN" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" class="wp-embedded-content"></iframe><script> /*! This file is auto-generated */ !function(d,l){"use strict";l.querySelector&&d.addEventListener&&"undefined"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!/[^a-zA-Z0-9]/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret="'+t.secret+'"]'),o=l.querySelectorAll('blockquote[data-secret="'+t.secret+'"]'),c=new RegExp("^https?:$","i"),i=0;i<o.length;i++)o[i].style.display="none";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute("style"),"height"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):"link"===t.message&&(r=new URL(s.getAttribute("src")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener("message",d.wp.receiveEmbedMessage,!1),l.addEventListener("DOMContentLoaded",function(){for(var e,t,s=l.querySelectorAll("iframe.wp-embedded-content"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute("data-secret"))||(t=Math.random().toString(36).substring(2,12),e.src+="#?secret="+t,e.setAttribute("data-secret",t)),e.contentWindow.postMessage({message:"ready",secret:t},"*")},!1)))}(window,document); </script> https://www.lifehacker.com.au/wp-content/uploads/2014/06/12/rktv6elxgfd6bkmjj2ft.png?quality=75636358Today, a security vulnerability in TweetDeck allowed malicious code to be run remotely. It seems the primary symptom is your account retweeting the malicious code. To fix it, sign out and back in now.