You don't need to be root to access this file. You forget to change the default settings and keep allowBackup to "true" in the manifest. So an attacker just have to backup the data of this app and he get the file.pic.twitter.com/Ell47rjLHg
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
You don't need to be root to access this file. You forget to change the default settings and keep allowBackup to "true" in the manifest. So an attacker just have to backup the data of this app and he get the file.pic.twitter.com/Ell47rjLHg
Once the attacker get the token, he can impersonate your account and do requests as if he is you
There is no "hacking scripts" involved here @KamalAditi... Once again, hire real developers and security experts before being condescending with others...
Why don’t you try this token to hack, :) this token is not valid, no valid tokens are stored in your reach.
Patanjali ganja marti ho kya behen? 
patanjali ganja and after that do yoga....frikkin hilarious 


Security flaw in Bolo app leads to yet another debacle for @KamalAditi after @KimbhoApp
Lesson #2: Never make the mistake of openly challenging Elliot Alderson
#NightmareBeginsforBolo
cc: @aadee_ram @ankitv
@moneycontrolcom @ChandnaHimani @Mayank1029 @ReutersIndia @ndtv
Lesson #3: App development is not a joke. If you don't hire competent developers, your app will be taken down by competent developers Lesson #4: Failure to learn from mistakes only makes it worse Lesson #5: Respect app developers Lesson #6: Follow Lesson #1 for improvement
Companies hire ethical hackers to find flaw in their products and pay them money for that. You are doing it for free! She seems smart crook. 
Right.. but we can do 1 thing. We can make this info viral, spread everywhere and make sure people don't use it. That will be a good lesson taught to this crook @KamalAditi
Don't force people to use or not to use an app. That's not the way it works. Let people decide. India is a nation of very patriotic AND ALSO very intelligent citizens. They know what is good for them.
Man are these people so dumb?? Hire good developers
to begin with..
Looks like there's FCM server side token too? 


you forgot to redact their fcmtoken. My guess would be it's firebase cloud messaging token.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.