Usually, when we think when something gets deleted, it’s gone for good without being able to be recovered. That’s not necessarily the case with Twitter holding on to direct messages that were thought to be deleted and that’s that.
Security researcher Karan Saini was able to find year old Direct Messages (DMs) in a file from an archive of his data that was obtained through Twitter. Some of the DMs were even from accounts that were no longer on the platform. Even though Saini claims this is more of a “functional bug” than a security flaw, it’s still a concern that the bug will allow anyone to access information to suspended or deactivated accounts.
A Twitter spokesperson has responded and said the company was “looking into this further to ensure we have considered the entire scope of the issue.” While Twitter is looking into the issue, this bug is still a problem with Europe’s new data protection laws. These laws let users tell companies that they wish for their data to be completely deleted and as such, they should expect it to be fully deleted.