New write-up by security researcher @avlidienbrunn: Login/logout CSRF: Time to reconsider? https://labs.detectify.com/2017/03/15/loginlogout-csrf-time-to-reconsider/ … #infosecpic.twitter.com/6UeKIq8bhk
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
Yeah I see making forced-login harder as a worthwhile defence in depth measure. Better than HTTPOnly :)
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.