How To Protect Your Twitter Account After Massive Hack This Morning

  • by: Maarten Schenk

Earlier today a massive cyberattack affected thousands of Twitter accounts by making them spam a pro Erdogan tweet/video and in some cases changing their profile and header pictures.

It appears the hack was caused by TwitterCounter (aka @thecounter on twitter), a third-party application used by many Twitter accounts that probably got its credentials stolen. Several users reported seeing hacked tweets being posted via the app:

Twitter users can give certain apps permission to use their account on their behalf by granting this application a 'key'. If this key falls into the wrong hands it means these wrong hands are then able to do anything this key allows them to do (in some cases this means posting tweets, in other cases it could mean near full control over the account).

Here's how to protect yourself: go to this link to see a list of all the applications that have a 'key' to your account. If you see 'The Counter' in the list it is probably a good idea to hit that "Revoke access" button next to it. Now might also be a good time to revoke the access of all other applications you don't use anymore or which you don't recognize. If it breaks anything, you can always reauthorize these apps again later.


Meanwhile TwitterCounter hasn't officially responded to the hack. Their latest tweet as of this time reads:

I'm sure they could use a laugh right now. If Twitter revokes their access key their entire userbase needs to resubscribe to the service using a new key (if they still trust them with their Twitter accounts after this). Ouch!

  Maarten Schenk

Maarten Schenk is the co-founder and COO/CTO of Lead Stories and an expert on fake news and hoax websites. He likes to go beyond just debunking trending fake news stories and is endlessly fascinated by the dazzling variety of psychological and technical tricks used by the people and networks who intentionally spread made-up things on the internet.

Read more about or contact Maarten Schenk

About Us

International Fact-Checking Organization Meta Third-Party Fact Checker

Lead Stories is a fact checking website that is always looking for the latest false, misleading, deceptive or inaccurate stories, videos or images going viral on the internet.
Spotted something? Let us know!.

Lead Stories is a:


Subscribe to our newsletter

* indicates required

Please select all the ways you would like to hear from Lead Stories LLC:

You can unsubscribe at any time by clicking the link in the footer of our emails. For information about our privacy practices, please visit our website.

We use Mailchimp as our marketing platform. By clicking below to subscribe, you acknowledge that your information will be transferred to Mailchimp for processing. Learn more about Mailchimp's privacy practices here.

Most Read

Most Recent

Share your opinion