Month Of Twitter Bugs Announced

In something of a retro InfoSec moment the old ‘Month of’ concept has been reanimated to help highlight security issues around social networking.

What seems like an age ago the Month of Bugs crazy was all the rage in 2006, we had the ‘Month of Browser Bugs’ and initiative created by Security Researcher H.D Moore in order to raise awareness of the security vulnerabilities within browsers. Since then we’ve had various Month of Bugs for many products and technologies. Something that is quite amazing is that in the whole these ‘Month of Bugs’ actually had an effect, in the case of the Browser focused series it made browser vendors sit up and take the security of their browsers a lot more seriously.

Almost in honor of the noble cause and three years after the ‘Month of Browser Bugs’, July 2009 will be come the “Month of Twitter Bugs” (MoTB). The concept has been reanimated by security researcher Aviv Raff, he is doing it in order to raise the awareness of the Twitter API he recently discussed in his blog.

MoTB could have been easily converted to any other “Month of Web2.0 service bugs”, and the goal is that Twitter and other Web2.0 API providers will work closely with their API consumers to develop more secure products. Each day Aviv will publish a new vulnerability on the twitpwn.com web site. As the vulnerabilities can be exploited to create a Twitter worm, Aviv is going to give the Twitter at-least 24 hours heads-up before the vulnerability is published.

You can find out more about the up coming MoTB here at Aviv’s blog.