Since affected users might have needed to rotate secrets, timely notification was considered to be very important (and still would be under our new policy!). Some more details are here: https://bugs.chromium.org/p/project-zero/issues/detail?id=1139 …
For those following along, note that Tavis disclosed the details several days after the initial fix in practice. The main discussion (and disagreement) was around how much time to allow for cleanup (removing the user data that was cached by search engines) vs user notification.
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.