For one percent of Twitter’s users, their interactions with some brands on direct message might have been shared to third-party developers. Twitter shares news about a bug that became active sometime in May 2017 until Sept. 10, 2018. It affected the interaction between users and accounts or businesses that used the Account Activity API (AAAPI). This API is designed for customer interactions. Twitter clarifies that it hasn’t affected other DMs and it will notify affected users through the app or website if they have been affected. The company is also getting in touch with the developers who got affected.