When your app gets hacked because of a bug in your code, that’s pretty bad. But when your app gets hacked because of a bug in an underlying protocol that’s a building block of the Internet, then you’re looking at a really serious problem.
Such is the case with Twitter, which last week was shown to be vulnerable to a bug in the SSL standard. SSL is the protocol that encrypts data going back and forth on the web, keeping our credit card numbers, usernames, passwords, and everything else safe and secure. The trouble is, it’s broken and has been since the mid-1990s.
Right now, the IETF (the standards setting body for the Internet and the closest thing to an Internet Illuminati) has started drafting an update for SSL, but such things take time. In the mean time, sites like Twitter are suffering the consequences.