- Security flaw could allow hackers to obtain your password
- Twitter integration crashed within two hours of UK launch
- Several other security vulnerabilities on the site
Louise Mensch’s “rival to Twitter” has security flaws which can expose users’ passwords to hackers, it has been revealed. Those clicking on a malicious link to the Menshn website could have sensitive information passed to wrongdoers.
The news comes less than two hours before England play Italy in Euro 2012 — an event which Mensch and her business partner Luke Bozier had hoped to capitalise on by launching in the UK earlier than anticipated.
The vulnerability was exposed by professional web developer Jonathan Buchanan (@twitinsin), who has sent a series of messages to Luke Bozier explaining problems with his code.
Within just two hours of the “US only” block being removed at midnight, Menshn’s poorly-coded Twitter integration fell over, forcing one of the site’s founders to beg for help — using rival website Twitter:
Worryingly, these are by no means the only problems with the site. When scammers aren’t trying to steal your password, edit your profile information or post messages using your account, they can display random abuse and extreme pornography:
Just days ago, Mensch was describing Bozier as an “awesome coder”.
[update id=”update” time=”09:18″ text=”The world’s tech and security websites have piled in …”]
- Gizmodo — “Don’t Menshn the Crippling Security Holes”
- SC Magazine — “Menshn dismiss claims of major security flaws”
- The Register — “Mensch pal Bozier defends Menshn security”
- TechWeekEurope — “Menshn Security Vulnerabilities Exposed”
- CNET — “New social network Menshn launches in UK with security holes”
- Guardian — “Menshn opens up to UK users and runs into security storm”