People holding mobile phones are silhouetted against a backdrop projected with the Twitter logo
Zatko submitted a disclosure to Congress and federal agencies in July.

KEY POINTS

  • Zatko alleged Twitter had inadequate security measures
  • The former employee said company executives didn't have the resources to determine the exact number of bot accounts
  • A Congress committee has launched an investigation into Zatko's revelations

After former Twitter employee Peiter Zatko accused the social media platform of underplayed spam issues and misleading investors in a whistleblower complaint, U.S. lawmakers have said they are taking the allegations seriously. A Congress committee has launched an investigation into Zatko's revelations.

Reports said the former security head's disclosure was sent to Congress and federal agencies in July. In the disclosure, obtained exclusively by CNN and The Washington Post, Zatko alleged that Twitter's cybersecurity defenses were poor and the company executives did not have the tools or resources necessary to understand the actual number of bot accounts on the platform – an issue raised by Tesla CEO Elon Musk since he announced last month his plans to end an agreement to purchase the social media platform for $44 billion.

U.S. officials have since spoken up about the issue, with Rep. Frank Pallone, D-N.J., stating he is "carefully reviewing this whistleblower disclosure and assessing next steps." Pallone said Zatko's allegations were "alarming."

Sen. Edward "Ed" Markey, D-Mass., wrote a letter Tuesday to the Federal Trade Commission (FTC), urging the agency to launch an investigation into Zatko's claims. In his letter, Markey said he hopes the FTC will "hold Twitter accountable for any illegal activity, and protect the data of Twitter's users."

In a statement on the matter, Rep. Bennie Thompson, D-Miss., said the new revelations raise critical questions about "Twitter's commitment to securing user data," Politico reported. Thompson, who is the chairman of the House Homeland Security Committee, said there was also concern about how possible security and user data issues at Twitter will affect the midterm elections.

Rep. John Katko, R-N.Y., echoed the sentiments of other officials. In an email to Politico, the congressman said the claims "could have serious national security, privacy and election security implications."

Sen. Richard Durbin, D-Ill., said he was investigating the matter and will "take further steps as needed to get to the bottom of these alarming allegations." Durbin is chair of the Senate Judiciary Committee.

CNN and The Post, which obtained Zatko's disclosure, reported that Zatko, also known as "Mudge," further detailed how Twitter's leadership allegedly misled its board of directors and tech regulators about vulnerabilities within the platform's security system.

Zatko alleged Twitter does not have a reliable process of deleting user data when someone opts to cancel their accounts. The former security chief added that he was fired in January after he attempted to inform Twitter about its security lapses. Twitter said at the time that Zatko was removed because of poor performance, CNN reported.

In an internal email sent to employees, Twitter CEO Parag Agrawal said Zatko's revelations were "a false narrative that is riddled with inconsistencies and inaccuracies, and presented without important context." Agrawal added that Twitter "will pursue all paths to defend our integrity as a company and set the record straight" regarding Zatko's claims.

In an interview with CNN correspondent Donie O'Sullivan, Zatko said "large tech companies need to know what the risks are" and should have the desire to fix security risks.