Twitter has a big problem. A new security design flaw is now being heavily exploited. Here's what you need to know now.
The root of the problem is a cross-site scripting (XSS) vulnerability in the Twitter Web page. As such, it can potentially affect you no matter what operating system or Web browser you're using. Really, your best move is just to avoid the Twitter site until the problem is fixed.
1. Select the Tool tab at the top right-hand corner
2. Click on Preferences
3. Go to "Under The Hood"
4. Click on "Content Settings"
7. Click on Close
1. Select Internet Options from the Tools menu.
2. Click the Security tab.
3. Click Custom level in Security level for this zone.
4. Scroll down to Scripting, near the bottom of the list.
5. Under Active scripting, choose Disable.
6. Click OK to leave Security Settings. Click OK to leave Internet Options. Firefox
1. Select Options from the Tools drop-down menu.
2. Select the Content section from the options at the top of the pop-up page.
4. Click OK. Safari
1. Select Preferences from the Safari drop-down menu.
2. Select the Security section from the options at the top of the pop-up page.
4. Close the Security window.
Twitter cliams they just fixed the problem. I'm not ready to give the all-clear yet myself. I'm still using Twitter, but I'm only doing it with my favorite Twitter application, Twitterfall.
At the same time, I'm finding this a painful reminder of just fragile and insecure many popular Web sites really are. It's enough to make me miss the "Fail Whale."