{"id":3060,"date":"2023-03-31T21:18:16","date_gmt":"2023-03-31T21:18:16","guid":{"rendered":"https:\/\/www.godefy.com\/fun-all-year-round-until-your-twitter-account-gets-compromised\/"},"modified":"2023-03-31T21:18:16","modified_gmt":"2023-03-31T21:18:16","slug":"fun-all-year-round-until-your-twitter-account-gets-compromised","status":"publish","type":"post","link":"https:\/\/www.godefy.com\/fun-all-year-round-until-your-twitter-account-gets-compromised\/","title":{"rendered":"Fun all year round until your Twitter account gets compromised"},"content":{"rendered":"<p>what&#8217;s up with the weird client apps like &#8220;Any Here Place #452B&#8221;? If you&#8217;ve been on Twitter for any length of time, you&#8217;ve probably encountered tweets from Round Year Fun: a set of &#8220;Twitter games&#8221; such as &#8220;My Twitter Family&#8221;, &#8220;My Twitter Interaction Group&#8221;, &#8220;My Twitter Crush&#8221;, &#8220;My Twitter Worth&#8221;, and &#8220;How and When Will You Die?&#8221;. Most of these basically just generate whimsical graphics showing accounts that you frequently interact with and post them to your Twitter account. It&#8217;s all just a bit of harmless fun and games, right?none of this is a good idea and you shouldn&#8217;t click &#8220;Authorize App&#8221;The Round Year Fun apps request an impressive list of permissions, which enable them to do basically anything with your Twitter account (if granted). This is partially due to how Twitter app permissions work, as it&#8217;s impossible for an app to request permission to post a tweet without also requesting basically all the rest of the stuff on that list. However, Round Year Fun abuses the granted permissions by automatically following various accounts without disclosing that it does so, and then muting them so that the legitimate user of the account doesn&#8217;t notice the unwanted follows. As we&#8217;ll see shortly, the accounts that Round Year Fun surreptitiously follows are the customers of a shady follower sales site, and if you use the Round Year Fun apps, your account becomes part of the site&#8217;s inventory.giving Round Year Fun access to your account results in it secretly following and muting accounts&#8230;<a href=\"https:\/\/conspirator0.substack.com\/p\/fun-all-year-round-until-your-twitter\">Fun all year round until your Twitter account gets compromised<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>what&#8217;s up with the weird client apps like &#8220;Any Here Place #452B&#8221;? If you&#8217;ve been on Twitter for any length of time, you&#8217;ve probably encountered tweets from Round Year Fun:&hellip; <\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[701,796,300,800,794,797,798,12,341,795,295,799,638],"_links":{"self":[{"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/posts\/3060"}],"collection":[{"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/comments?post=3060"}],"version-history":[{"count":0,"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/posts\/3060\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/media?parent=3060"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/categories?post=3060"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.godefy.com\/wp-json\/wp\/v2\/tags?post=3060"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}