Technology
Cybersecurity

Twitter Auditors Missed Security Lapses Whistleblower Later Called ‘Egregious’

  • Ernst & Young 2021 audit called Twitter security appropriate
  • Audit didn’t flag dire gaps exposed by ex-cyber chief ‘Mudge’

Peiter Zatko, Twitter’s ex-head of cybersecurity, filed a complaint and testified before Congress earlier this year saying that the company was a “ticking bomb of security vulnerabilities.”

Photographer: Eric Lee/Bloomberg
Contact us:
Provide news feedback or report an error
Confidential tip?
Send a tip to our reporters
Site feedback:
Take our SurveyNew Window
By and
Lock
This article is for subscribers only.

A previously undisclosed government-ordered audit of Twitter Inc.’s privacy and data controls missed failures later exposed by a whistleblower -- raising questions about oversight of major technology platforms.

The , obtained by Bloomberg News in response to a public records request, concluded that the company had appropriate safeguards. Months later, the company’s cybersecurity chief had left and alleged that Twitter’s practices were marred by “egregious deficiencies.”

HomeBTV+Market DataOpinionAudioOriginalsMagazineEvents
News
MarketsEconomicsTechnologyPoliticsGreenCryptoAI
Work & Life
WealthPursuitsBusinessweekCityLabSportsEqualityManagement & Work
Market Data
StocksCommoditiesRates & BondsCurrenciesFuturesSectorsEconomic Calendar
Explore
NewslettersExplainersPointed News QuizAlphadots GameThe Big TakeGraphicsSubmit a TipAbout Us
Terms of ServiceTrademarksPrivacy Policy
CareersAdvertise
Ad Choices
Help©2026 Bloomberg L.P. All Rights Reserved.