Twitter hackers with ideas for hilarious stunts should get a move on

Twitter is finally on to you.

Last week I wrote about Twitter's upcoming hospitality to targeted advertising, and what this means for its users (almost definitely a dystopian nightmare). But Twitter is strangely inhospitable to advertisers in other ways - making a branded account something of a liability.

Branded accounts only have the same security as the rest of us - just the one username and password. As a result, a growing number of official accounts have fallen victim to hacking. Last week it was Burger King, which got taken over by Anonymous-affiliated hackers. It was soon branded with the Mcdonalds logo and issuing tweets like this:

We just got sold to McDonalds! Look for McDonalds in a hood near you @DFNCTSC

And then earlier this year there was the HMV clusterfuck, courtesy of some employees in the process of being fired. From the official account:

There are over 60 of us being fired at once! Mass execution, of loyal employees who love the brand. #hmvXFactorFiring,

Sorry we've been quiet for so long.Under contract, we've been unable to say a word, or – more importantly – tell the truth.

Just overheard our Marketing Director (he's staying, folks) ask 'How do I shut down Twitter?'

It's also happened, in various ways, to Jeep, NBC News, USA Today and Donald Trump, and all of those incidents were likewise funny. The thing is that official Twitter accounts are nigh on irresistible to hackers. There's something of the getting-down-with-the-kids about branded Twitter accounts, with their ulterior motivated chattiness and their thinly veiled desperation, and it's always tempting to remind them that they're still not really one of us.

So should Twitter be doing more to protect these accounts? At the moment it is running several paid options for advertisers - none of which include the option to up their security. But then why should it offer this? It would be a canny move to introduce it only later in the game, when more hacker attacks have increased the fear, and companies have accumulated more followers, raising the stakes.

The trouble is that at the moment this potential revenue is being siphoned off by third parties like Hootsuite, whose products let you manage your account a little more securely, and which get a boost everytime a company is publicly hacked. Unsurpisingly therefore, last Wednesday Twitter introduced a product facilitating ad promotion through third parties like this. It looks like the start of a move to finally get offical accounts a little safer. But is Twitter too late to the party, or too early? Either way, it's starting to twig, and potential hackers better get a move on with their hilarious stunts, before it's too late.

 
Twitter may be about to clamp down security. Photograph: Getty Images

Martha Gill writes the weekly Irrational Animals column. You can follow her on Twitter here: @Martha_Gill.

Show Hide image

Calum Kerr on Governing the Digital Economy

With the publication of the UK Digital Strategy we’ve seen another instalment in the UK Government’s ongoing effort to emphasise its digital credentials.

As the SNP’s Digital Spokesperson, there are moves here that are clearly welcome, especially in the area of skills and a recognition of the need for large scale investment in fibre infrastructure.

But for a government that wants Britain to become the “leading country for people to use digital” it should be doing far more to lead on the field that underpins so much of a prosperous digital economy: personal data.

If you want a picture of how government should not approach personal data, just look at the Concentrix scandal.

Last year my constituency office, like countless others across the country, was inundated by cases from distressed Tax Credit claimants, who found their payments had been stopped for spurious reasons.

This scandal had its roots in the UK’s current patchwork approach to personal data. As a private contractor, Concentrix had bought data on a commercial basis and then used it to try and find undeclared partners living with claimants.

In one particularly absurd case, a woman who lived in housing provided by the Joseph Rowntree Foundation had to resort to using a foodbank during the appeals process in order to prove that she did not live with Joseph Rowntree: the Quaker philanthropist who died in 1925.

In total some 45,000 claimants were affected and 86 per cent of the resulting appeals saw the initial decision overturned.

This shows just how badly things can go wrong if the right regulatory regimes are not in place.

In part this problem is a structural one. Just as the corporate world has elevated IT to board level and is beginning to re-configure the interface between digital skills and the wider workforce, government needs to emulate practices that put technology and innovation right at the heart of the operation.

To fully leverage the benefits of tech in government and to get a world-class data regime in place, we need to establish a set of foundational values about data rights and citizenship.

Sitting on the committee of the Digital Economy Bill, I couldn’t help but notice how the elements relating to data sharing, including with private companies, were rushed through.

The lack of informed consent within the Bill will almost certainly have to be looked at again as the Government moves towards implementing the EU’s General Data Protection Regulation.

This is an example of why we need democratic oversight and an open conversation, starting from first principles, about how a citizen’s data can be accessed.

Personally, I’d like Scotland and the UK to follow the example of the Republic of Estonia, by placing transparency and the rights of the citizen at the heart of the matter, so that anyone can access the data the government holds on them with ease.

This contrasts with the mentality exposed by the Concentrix scandal: all too often people who come into contact with the state are treated as service users or customers, rather than as citizens.

This paternalistic approach needs to change.  As we begin to move towards the transformative implementation of the internet of things and 5G, trust will be paramount.

Once we have that foundation, we can start to grapple with some of the most pressing and fascinating questions that the information age presents.

We’ll need that trust if we want smart cities that make urban living sustainable using big data, if the potential of AI is to be truly tapped into and if the benefits of digital healthcare are really going to be maximised.

Clearly getting accepted ethical codes of practice in place is of immense significance, but there’s a whole lot more that government could be doing to be proactive in this space.

Last month Denmark appointed the world’s first Digital Ambassador and I think there is a compelling case for an independent Department of Technology working across all government departments.

This kind of levelling-up really needs to be seen as a necessity, because one thing that we can all agree on is that that we’ve only just scratched the surface when it comes to developing the link between government and the data driven digital economy. 

In January, Hewlett Packard Enterprise and the New Statesman convened a discussion on this topic with parliamentarians from each of the three main political parties and other experts.  This article is one of a series from three of the MPs who took part, with an  introduction from James Johns of HPE, Labour MP, Angela Eagle’s view and Conservative MP, Matt Warman’s view

Calum Kerr is SNP Westminster Spokesperson for Digital