Latest in Services

Image credit:

Twitter exploit let two pranksters post a 35,000-character tweet

And you thought 280 was excessive.
David Lumb, @OutOnALumb
November 6, 2017
Share
Tweet
Share

Sponsored Links

Twitter / Internet Archive

Over the weekend, two German Twitter users successfully broke the existing character limit by sending a 35,000-character tweet. By formatting a message as a URL with extensive gibberish, they were able to absurdly pollute followers' timelines. Twitter soon removed it, but for a moment, all the complaints about the length of 280-character tweets seemed insignificant in the face of such a monster.

User Timrasett paired up with another named HackneyYT to discover the exploit and tweet out the message. The original is gone now, but thanks to the power of the Internet Archive, you can see the colossus here in all its glory. While the text looks like nonsense, buried inside are URL codifiers (notably a '.cc' tucked within), as Twitter user hexwaxwing pointed out:

Twitter temporarily banned the two users responsible, though their accounts are back online (after thanking Twitter and apologizing for crashing the site). Judging by HackneyYT's post-ban tweet, both will continue to poke around looking for bugs on the social platform. When reached for comment, a Twitter spokesperson confirmed that the exploit has been fixed and pointed to its rules, specifically:

To promote a stable and secure environment on Twitter, you may not do, or attempt to do, any of the following while accessing or using Twitter:

  • Access, tamper with, or use non-public areas of Twitter, Twitter's computer systems, or the technical delivery systems of Twitter's providers (except as expressly permitted by the Twitter Bug Bounty program).
  • Probe, scan, or test the vulnerability of any system or network, or breach or circumvent any security or authentication measures (except as expressly permitted by the Twitter Bug Bounty program).
  • Interfere with or disrupt the access of any user, host or network, including, without limitation, sending a virus, overloading, flooding, spamming, mail-bombing Twitter's services, or by scripting the creation of content in such a manner as to interfere with or create an undue burden on Twitter
In this article: services, twitter
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
Tweet
Share

Popular on Engadget

The 2020 Engadget Holiday Gift Guide

The 2020 Engadget Holiday Gift Guide

View
Zappos' pioneering ex-CEO Tony Hsieh dies at 46

Zappos' pioneering ex-CEO Tony Hsieh dies at 46

View
The Morning After: The best Black Friday deals that are still going

The Morning After: The best Black Friday deals that are still going

View
Vava’s 4K ultra short-throw projector is $840 off at Amazon

Vava’s 4K ultra short-throw projector is $840 off at Amazon

View
The best Black Friday tech deals we could find

The best Black Friday tech deals we could find

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr