Connect with us

SOCIAL

Twitter Outlines Specific Detail of Recent Hack: 130 Accounts Impacted, Personal Information Compromised

Published

on

As its investigation continues, on late Friday night, Twitter provided an update of the latest information about the recent hack which targeted the accounts of several high profile users. 

To recap the situation, at around 1pm on Wednesday, several celebrity accounts began tweeting out similar, odd messages regarding a Bitcoin giveaway.

Twitter hack

As you can see in these examples, the affected accounts included Barack Obama, Jeff Bezos, Kim Kardashian and more. Twitter users quickly established that the accounts had been hacked, but not before around $300k worth of Bitcoin had been sent through to the listed address. The listed account number where people were to send Bitcoin was the same on all the tweets.

Upon recognizing the incident, Twitter locked down all verified accounts as it sought to assess the situation, while Twitter also took expanded action that wasn’t as publicly visible.

As explained by Twitter:

“Shortly after we became aware of the ongoing situation, we took preemptive measures to restrict functionality for many accounts on Twitter – this included things like preventing them from Tweeting or changing passwords. […] We also locked accounts where a password had been recently changed out of an abundance of caution.”

So what happened? How, exactly, did the hacker – or hackers – get access to these high-profile accounts.

“We believe attackers targeted certain Twitter employees through a social engineering scheme. […] The attackers successfully manipulated a small number of employees and used their credentials to access Twitter’s internal systems, including getting through our two-factor protections. As of now, we know that they accessed tools only available to our internal support teams to target 130 Twitter accounts. For 45 of those accounts, the attackers were able to initiate a password reset, login to the account, and send Tweets.”

Twitter reported that 130 accounts in total had been impacted late Thursday evening, and it now says that fewer than half of them were subsequently utilized in the hack.

The explanation appears to align with a New York Times report on the incident – on Friday, NYT published details that it had gleaned from a group of hackers who’ve claimed responsibility for the hack. NYT was able to verify their explanations by matching their Bitcoin accounts with the address listed in the tweets.

According to the report, a hacker going by the name of ‘Kirk’ was able to gain access to Twitter’s administration tools by first being added to Twitter’s internal Slack channel, where the details he needed had been posted in various exchanges. With this newfound access to Twitter’s control panel, Kirk claims to have first sought to sell usernames in the gaming community, where single letter handles (like @y, for example) are particularly popular.

After recruiting other hackers to assist in his plan, Kirk began selling usernames on Wednesday morning, with the prices for the hacked profiles quickly rising rapidly throughout the day. Given that initial success, Kirk then turned his attention to taking control of celebrity accounts, through which he eventually claims to have netted around $180k from people that had been duped by the fake messages.

The New York Times reports that Kirk stopped communicating with them after word circulated that the FBI had become involved in the case. 

Twitter’s account of its findings thus far largely matches up with this overview – though, given this, that would mean that private information from these accounts was accessible in the hack.

Twitter confirms this, noting that:

  • Attackers were able to view personal information including email addresses and phone numbers, which are displayed to some users of our internal support tools.
  • In cases where an account was taken over by the attacker, they may have been able to view additional information. Our forensic investigation of these activities is still ongoing.

That additional information would include DMs, which could be a significant concern for those involved.

There’s also this:

“For up to eight of the Twitter accounts involved, the attackers took the additional step of downloading the account’s information through our “Your Twitter Data” tool. This is a tool that is meant to provide an account owner with a summary of their Twitter account details and activity. We are reaching out directly to any account owner where we know this to be true. None of the eight were verified accounts.”

If the NYT’s report is correct, that would likely have been the accounts initially sold by the hackers.

In some respects, the fact that these were not verified accounts seemingly lessens the severity of such – but either way, the hackers were theoretically able to access sensitive information, and full Twitter details on past owners of the hacked accounts.

There’s no way to soften the blow here – this is a major breach of Twitter’s systems, which will erode trust in the platform for some time to come. If the details reported thus far are correct, the weakness here was human error, and that, in many respects, will always exist in all security chains. But still, as The Verge’s Casey Newton noted in his initial report on the incident.

“Twitter is, for better and worse, one of the world’s most important communications systems. […] After today it is no longer unthinkable, if it ever truly was, that someone could take over the account of a world leader and attempt to start a nuclear war.” 

Indeed, already US President Donald Trump has threatened war via tweet, while other remarks and observations he’s shared on the platform have impacted the stock market and sparked protest action.

It may seem like a stretch, like it could never get to that point – and it may seem now like these were just some trouble-making hackers looking to make a quick buck. But the significance of the incident cannot be overlooked. Twitter will need to work hard to show that such a hack cannot happen again.

Which, based on this explanation, it probably can’t do, but it will need to improve its processes to provide assurance that it’s working to reinforce its systems.  

There’ll be much more, no doubt, to follow on this.

Socialmediatoday.com

SOCIAL

Fed-up accountant 'shocked and disappointed' after his Facebook account is taken down again

Published

on

Fed-up accountant 'shocked and disappointed' after his Facebook account is taken down again

A fed-up accountant has spoken of his “disappointment” after his Facebook page was taken down AGAIN. Last July, we told how Suleiman Krayem feared …

Source link

Continue Reading

SOCIAL

Twitter Tests New Quick Boost Option for Tweets

Published

on

Twitter Tests New Quick Boost Option for Tweets

Here’s the difficult thing with Twitter no longer having a comms department – now, there’s nowhere to go to confirm info about the app’s latest updates and features, and where each is available, etc.

Case in point – this week, Twitter appears to have launched a new in-stream boost option for tweets, which provides a quick and easy way to promote your tweet without having to launch a full ad campaign.

As you can see in these screenshots, posted by Jonah Manzano (and shared by Matt Navarra), the new boost option would be available direct from a tweet. You’d simply tap through, select a budget, and you would be able to boost your tweet then and there.

Which seems to be new, but also seems familiar.

It’s sort of like Twitter’s Quick Promote option, but an even more streamlined version, with new visuals and a new UI for boosting a tweet direct from the details screen.

Tweet boost

So it does seem like a new addition – but again, with no one at Twitter to ask, it’s hard to confirm detail about the option.

But from what we can tell, this is a new Twitter ad process, which could provide another way to set an objective, a budget, and basic targeting parameters to reach a broader audience in the app.

Which could be good, depending on performance, and there may well be some tweets that you just want to quickly boost and push out to more people, without launching a full campaign.

It could also be a good way for Twitter to bring in a few more ad dollars, and it could be worth experimenting with to see what result you get, based on the simplified launch process.

If it’s available to you. We’d ask Twitter where this is being made available, but we can’t. So maybe you’ll see it in the app, maybe not.

Thus is the enigma of Twitter 2.0.



Source link

Continue Reading

SOCIAL

Twitter faces lawsuit by advisory firm for $1.9 million in unpaid bills

Published

on

Twitter faces lawsuit by advisory firm for $1.9 million in unpaid bills

US-based advisory firm Innisfree M&A Incorporated sued Twitter on Friday in New York State Supreme Court, seeking about $1.9 million compensation for what it says are unpaid bills. Reuters File Photo

New York: US-based advisory firm Innisfree M&A Incorporated sued Twitter on Friday in New York State Supreme Court, seeking about $1.9 million compensation for what it says are unpaid bills after it advised the social media company on its acquisition by Elon Musk last year.

“As of December 23, 2022, Twitter remains in default of its obligations to Innisfree under the agreement in an amount of not less than $1,902,788.03,” the lawsuit said.

Twitter and a lawyer for Innisfree did not respond to queries.

Elon Musk in October closed the $44 billion deal announced in April that year and took over microblogging platform Twitter.

In January 2023, Britain’s Crown Estate, an independent commercial business that manages the property portfolio belonging to the monarchy, said that it had begun court proceedings against Twitter over alleged unpaid rent on its London headquarters.

Advertising spending on Twitter Inc dropped by 71% in December, data from an advertising research firm showed, as top advertisers slashed their spending on the social-media platform after Musk’s takeover.

The banks that had provided $13 billion in financing last year for the Tesla chief executive’s acquisition of Twitter abandoned plans to sell the debt to investors because of uncertainty around the social media company’s fortunes and losses, according to media reports.

Recently, Twitter made its first interest payment on a loan that banks provided to help finance Musk’s purchase of the social media company last year.

Read all the Latest News, Trending News, Cricket News, Bollywood News,
India News and Entertainment News here. Follow us on Facebook, Twitter and Instagram.



Source link

Continue Reading

Trending

en_USEnglish