While Facebook and Google are under fire for their failure to protect the data of their users, Twitter did a clear invasion of privacy when it took over a user’s account and read that user’s DMs… Or did they? Here’s what happened.
On March 25, Twitter user Matt Navarra had a brilliant idea. He wanted someone else to manage his Twitter account for a day, so he asked who wanted to be him on Twitter. @Twitter themselves volunteered, surprising Navarra and all of his followers.
https://twitter.com/Twitter/status/1110310991798173697
That’s how the account takeover happened, and Navarra even tweeted the actual turnover:
— Matt Navarra (@MattNavarra) March 26, 2019
Are you ready? @twitter is in!
Do me proud! pic.twitter.com/349a2LrCno
— Matt Navarra (@MattNavarra) March 26, 2019
Twitter began tweeting using Navarra’s account on Tuesday, but it temporarily changed the name to “Tweet Navarra.” (It has now been changed back to the original account name.) Here are some of the tweets which were mostly puns and sentences that make no sense at all, and Twitter even joked that these were actual drafts from Navarra’s account.
BREAKING: Twitter is launching a "quick mute button". The only people it’ll mute? Anyone asking for an edit button.
— Matt Navarra (@MattNavarra) March 26, 2019
Facebook group admins now given admin rights to Facebook groups with new rights to change admins in groups on Facebook about Facebook Groups
— Matt Navarra (@MattNavarra) March 26, 2019
Twitter will now allow Tweets from Twitter to appear on Tweets in Twitter that use Twitter that previously used the Twitter API #Twitter
— Matt Navarra (@MattNavarra) March 26, 2019
The pixel has moved one pixel to the left, replacing the previous pixel that was one pixel to the right
— Matt Navarra (@MattNavarra) March 26, 2019
The tweets even made it to Twitter’s top posts. Account takeovers and collaborations are a great way to get new followers and retweets!
Here are @Twitter 's top posts right now pic.twitter.com/rieV3XYreL
— Amir Zonozi (@Zonozi) March 26, 2019
Who is Matt Navarra, anyway?
Navarra is a social media consultant. He is pretty famous for always being one of the first people to detect new features on social media platforms like Twitter, Instagram, and Facebook. He has around 42,000 followers on Twitter. He posted these stats when he posted his challenge for someone to take over his account for a day:
Here’s my stats you get to play with pic.twitter.com/NG143g1Bz9
— Matt Navarra (@MattNavarra) March 25, 2019
This shows 5.78 million impressions on 476 tweets and 136 thousand profile visits, which are impressive number for a non-brand account.
Did Twitter read Navarra’s DMs?
Since Navarra was the one who initiated the takeover (and Twitter only volunteered), it’s not an invasion of privacy, right? This was all good, and almost everyone was having fun until:
DMs: read. Time for the Tweets.
— Matt Navarra (@MattNavarra) March 26, 2019
yikes, there are a lot
— Matt Navarra (@MattNavarra) March 26, 2019
A screenshot of Navarra’s inbox was even posted:
TIL: @MattNavarra DMs with @s8n pic.twitter.com/gvuSDLTm4V
— Matt Navarra (@MattNavarra) March 26, 2019
Did Twitter really read through Navarra’s direct messages? If they did, then that’s creepy and a cause for concern to anyone who had ever messaged Matt Navarra. For his part, Navarra claimed that he deleted all DMs before he allowed Twitter to take over.
All janes messages between us were deleted before hand as were tons of others (intentionally so). Jane is right to be upset and sorry if I upset you Jane.
— Matt Navarra (@MattNavarra) March 27, 2019
We can’t verify this though since there’s no screenshot of an empty inbox, to begin with. The inbox screenshot we have is the one when Twitter already took over. It showed that it wasn’t empty at all—there’s even a message from “Satan.”
Reaction from Twitter users
Apparently, this didn’t sit well with followers who had exchanged messages with Navarra, and with other Twitter users who are concerned about privacy.
I am not comfortable with @Twitter accessing our conversation with Matt Navarra because I've talked about my personal matters and I expected Matt will only have access to
Not cool going through someone else's DM inbox. This is an invasion of privacyhttps://t.co/JHnM7hfCXZ
— Jane Manchun Wong (@wongmjane) March 27, 2019
He allowed them in! What sort of sick joke was that by the way??
Matt should have thought about the privacy of others more before even thinking of that.
And this is not just about twitter, it could have been another random person ffs— Ernest Off (@Ernoff_world) March 27, 2019
Hmmm. I guess this is a matter of personal discretion. Matt knew that Twitter will have full access of his account once he has given his credentials, even his DMs. If he had personal info in the DMs, he should've deleted it or not share his credentials in the first place.
— renz bernardo ✦ (@ohitsmerenz) March 27, 2019
It’s super wild. Twitter deserves a big investigation in multiple jurisdictions for that type of sloppy marketing “joke”- @TwitterSafety is working hard while @TwitterMktg is trying to goose their account engagement stats through anti-privacy *and anti-consent* “jokes” – v gross.
— Zach Edwards (@thezedwards) March 27, 2019
Twitter did not comment on this, but it did confirm that it logged in to Navarra’s Twitter account and tweeted as him to have some fun. Although the brief takeover was entertaining and funny, Twitter joking that it read all DMs was of bad taste, especially when other tech companies are being roasted for user privacy breaches. Facebook’s security issues and Google’s user data exposure are causing an uproar among privacy advocate groups, with stricter regulations being proposed.