Twitter has confirmed a security bug that causes the posting of Circle tweets, that is, posts that are only visible to a small percentage of trusted friends.
The error was reported in early April and platform announced today confirmed the issue in an email to Twitter Circle users.
The email sent states the following:
“In April 2023, a security incident may have allowed users except of your Twitter circle, see tweets that should have been limited to the circle you posted to”
Twitter has confirmed that the bug has now been fixed.
The thing is, Twitter Circle has been having issues for several months now, which is concerning for a feature that people use to write things they don't want to share with all their followers.
When the problem was reported last month, several users said on Twitter that people outside their Circle had "liked" their private tweets.
Confirmed someone I'm not even following was able to see a private Twitter Circle tweet (thank you @TheSahilDev)
This hurts trust in the platform a lot. Should be top priority @TwitterEng pic.twitter.com/BCYPkikJ2p
- Theo - T3.GG (@t3dotgg) April 8, 2023
In addition to the privacy violations, some Circle tweets still appear without green banner, indicating that they are only visible to a small audience.
These tweets have grayed-out retweet buttons, indicating they are not public.