Certain users of Twitter (s twtr) platform Tweetdeck were shocked Wednesday morning to see that the app -- which works via web, desktop and extensions in Chrome and Firefox -- was creating pop-up alerts all by itself.
The source of the problem is thought to be caused by an XSS exploit, based on a particular pop-up that cites XSS directly:
It remains unclear exactly who has hacked the platform and how they got there, but if you are a user of Tweetdeck, it's best to log out of the platform and revoke access via Twitter's settings until the issue is resolved. Tweetdeck has yet to respond formally to the issue.
This article will update with more information as it becomes available.