Twitter is reported of suffering from yet another security vulnerability. According to a report, if you use your Twitter credentials to log into a third-party website, that site could gain access to your private direct messages.
Gary-Adam Shannon, in a technical demonstration using WordPress and the Twitter API, shows how a small code change in the API code can send direct messages of logged in users directly to your email inbox of choice. Twitter has yet to comment on the vulnerability. For now, Shannon recommends not letting Twitter log you in to applications.[Source]