The Twitter service was widely exploited to launch pop-ups and browser windows, according to security firm Sophos. The hack exploited a JavaScript command called 'onmouseover' to launch pop-ups ...

When you host Twitter functionality this frequently, it makes sense to host Twitter’s widgets.js script directly in your site template.

A new piece of malware is spreading on Twitter by using injected JavaScript to hijack accounts.

Anyone checking twitter.com this morning was probably greeted with a mess of JavaScript, mouseover effects, and spam retweets, after a flaw in the site's handling of hyperlinks allowed attackers ...