Connect with us

SOCIAL

Twitter Provides New Detail on Recent Celebrity Account Hack

Published

on

Twitter has today provided another update on the extent of the recent hack which saw the profiles of several high profile users, including Barack Obama, Joe Biden and more, taken over and used to promote a cryptocurrency scam. 

Twitter hack

Already, Twitter had confirmed that 130 accounts, in total, had been targeted in the incident, and that the attackers had been able to gain full access to 45 of those. Further than that, for up to eight of the hacked accounts, the attackers also took the additional step of downloading historical and personal information through the “Your Twitter Data” tool, while some had also gone through the accounts’ DMs.

Twitter says that it’s limited in the information it can provide on the full extent of the incident, due to ongoing law enforcement action, but it’s provided these additional insights into what occurred:

“The attack on July 15th, 2020, targeted a small number of employees through a phone spear phishing attack. This attack relied on a significant and concerted attempt to mislead certain employees and exploit human vulnerabilities in order to gain access to our internal systems.”

The process of phone spear phishing is essentially convincing the person you’re calling that you’re from an organization/department that requires their details – be that a government agency, an IT support line, etc. The caller then obtains what they can, and slowly pieces together the information, normally through a range of calls with different employees, in order to gain access info. 

Twitter provides further context on this process in its updated blog post on the event:

See also  Facebook Adds New Safety Check and Live Video Enhancements for Workplace

Not all of the employees that were initially targeted had permissions to use account management tools, but the attackers used their credentials to access our internal systems and gain information about our processes. This knowledge then enabled them to target additional employees who did have access to our account support tools. 

So it’s a slow, deliberate process, gaining information, bit-by-bit, which gradually leads the hackers through to the access they need. Through this process, their phone hacks also become more convincing, as they learn the names of other employees, the details of how the systems work, insights that make their explanations more and more convincing as they progress.

“By obtaining employee credentials, they were able to target specific employees who had access to our account support tools. They then targeted 130 Twitter accounts – Tweeting from 45, accessing the DM inbox of 36, and downloading the Twitter Data of 7. While these tools, controls, and processes are constantly being updated and improved, we are taking a hard look at how we can make them even more sophisticated.”

So the scope of the attack hasn’t altered – though Twitter did initially say that they’d downloaded the data info from eight accounts, which is now down to seven. That doesn’t necessarily lessen the impact, but it’s a slightly better outcome than first thought.

In response to the event, Twitter says that:

“We’ve significantly limited access to our internal tools and systems [and] we’re accelerating several of our pre-existing security workstreams and improvements to our tools. We are also improving our methods for detecting and preventing inappropriate access to our internal systems and prioritizing security work across many of our teams.”

Twitter also notes that its limited access to some internal tools for the time being, which may result in slower than normal response times for some support operations. 

See also  ByteDance CFO assumes role as new TikTok CEO

“This was a striking reminder of how important each person on our team is in protecting our service. We take that responsibility seriously, and everyone at Twitter is committed to keeping your information safe. We’ll continue to share updates and precautionary steps we take so that others can learn from this, too. We recognize the trust you place in us, and are committing to earning it by continued open, honest and timely updates anytime an incident like this happens.”

The explanation, again, largely aligns with New York Times report on the incident, in which the NYT claimed to have spoken with the hackers responsible, who’ve since gone into hiding.

According to the NYT report, a hacker going by the name of ‘Kirk’ was able to gain access to Twitter’s administration tools by first being added to Twitter’s internal Slack channel, where he gleaned details that enabled him to eventually access Twitter’s internal tools. Kirk stopped talking to NYT when the FBI announced their involvement in the case.

The hacker’s initial aim was to obtain desirable Twitter handles, then on-sell them within the gaming community. Which, reportedly, he did, with several profiles changing hands, before he then switched his attention to celebrity profiles. The explanation is not verifiable at this stage, but again, it seems to mostly line-up with Twitter’s insights into the event.

In some ways, human vulnerabilities will always exist in any system, but subsequent reports have also suggested that Twitter was not overly cautious with its access permissions, and that thousands of staff and contractors would have theoretically been able to action such requests. We’re not likely to hear a lot more on that side of things till the full investigation is complete, but as Twitter notes, the incident serves as a reminder that platforms need to manage their security judiciously, especially when they have the scale and influence of the major social networks.

See also  Checklist for Planning a Successful LinkedIn Group [Infographic]

Socialmediatoday.com

Continue Reading
Advertisement

SOCIAL

TikTok Partners with Zefr to Offer Increased Assurance on Safe Ad Placement

Published

on

TikTok Partners with Zefr to Offer Increased Assurance on Safe Ad Placement


TikTok has partnered with brand suitability platform Zefr on a new brand safety post-bid measurement solution for in-feed ads, which will enable advertisers to ensure that their TikTok promotions don’t appear alongside potentially offensive material.

As you can see here, using Zefr’s dashboard, which provides insights into each campaign by mapping it against the Global Alliance for Responsible Media (GARM) Suitability Risk categories, advertisers will now be able to ensure that their TikTok ads are not shown next to content that they don’t want to be associated with.

As explained by TikTok:

“This solution will provide advertisers with campaign insights into brand safety and brand suitability for their TikTok campaigns. These insights provide clients with third-party impartial reassurance that their investment is delivered next to content suitable for their brand, protecting brand reputation and mitigating risk.”

Zefr’s advanced ‘Cognition AI’ process utilizes audio, text, and frame-by-frame video analysis, along with scaled human review, to determine brand safety, and provide full assurance on potential ad placement.

With TikTok’s challenges and posts sometimes veering into dangerous territory, the option will help to reassure brands that their campaigns won’t end up being associated with potential harm, which could help TikTok secure even more ad spend.

Though it could be difficult to 100% guarantee success here. For example, the recent ‘Milk Crate Challenge’ on TikTok started off innocently enough, but eventually lead to increasingly risky and dangerous behaviors, which resulted in serious injuries to some participants. Other TikTok challenges could follow a similar evolution – though the additional assurance of Zefr’s systems will ideally help to catch these out before they become a potential brand risk, or at the least, as soon as they’re identified as a problem.

See also  ByteDance CFO assumes role as new TikTok CEO

It’s a good integration, and another key step in TikTok’s broader expansion of its ad tools.

The new TikTok Zefr integration is available to advertisers in the US, Canada, the UK, France, Germany, Italy, Poland and Spain.



Source link

Continue Reading

SOCIAL

How to Elevate Your Social Media ROI [Infographic]

Published

on

How to Elevate Your Social Media ROI [Infographic]

Looking for ways to improve your social media marketing efforts in 2022?

As we head into the new year, it’s worth revising your business goals, and establishing a clear direction for your digital marketing process. Maybe you’re happy with the growth and interaction you’re seeing, and how that’s then leading to conversion, but over the past two years, in particular, there’s no doubt been some level of disruption to your marketing plans.

With that in mind, this infographic from the team at Click Dimensions could help. They’ve put together a simple overview of how to establish your social media marketing goals, including which metrics to focus on, how to increase engagement, and the importance of adapting as things progress.

It could help to spark some new thinking in your approach – check out the full infographic below.

Source link

See also  ByteDance CFO assumes role as new TikTok CEO
Continue Reading

SOCIAL

5 Essential Pinterest Metrics to Track [Infographic]

Published

on

5 Essential Pinterest Metrics to Track [Infographic]

Will Pinterest be part of your digital marketing approach in 2022?

More brands are now considering it, with Pinterest now up to 444 million active users, and becoming a key eCommerce hub for many amid the pandemic. Pinterest is also seeing an increase in male usage, expanding its target demographics, while its evolving shopping options, including AR displays and virtual try-on tools, are helping to advance the app’s utility, and make it a more essential companion for many consumers.

At the least, it may be worth checking in and seeing what brands in your niche are doing in the app.

And if you are looking to improve your Pin presence, then you need to be tracking the right metrics –which is where this new infographic listing from Giraffe Social Media comes in.

The graphic below outlines the key Pinterest metrics you need to track, in order to measure and improve your Pin performance. Worth noting in your approach.

Source link

See also  Instagram Launches First Edition of 'Instagram Insider' Digital Magazine, Highlighting Platform Trends
Continue Reading

DON'T MISS ANY IMPORTANT NEWS!
Subscribe To our Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

Trending