Twitter has confirmed that 130 accounts have been focused and 45 have been compromised in a security breach earlier this week.
As we have been informing through the @TwitterHelp account, on Wednesday, July 15, 2020, we detected a security incident at Twitter and took speedy motion. As we head into the weekend, we need to present an outline of the place we’re.
Twitter says that attackers focused “certain Twitter employees through a social engineering scheme”, in the context, “the intentional manipulation of people into performing certain actions and divulging confidential information.” A current Motherboard report claims hackers merely paid off a Twitter insider to do their work for them.
Twitter says “a small number of employees” have been efficiently manipulated, and their credentials used to realize entry to inside techniques, bypassing 2FA protections.
It says 130 accounts have been focused. 45 of these had their passwords reset, and the attackers have been in a position to login to these accounts and ship rogue tweets. Tweets despatched from accounts like Apple, Barack Obama, Bill Gates, and extra requested customers to ship Bitcoin to an tackle with the promise it might be doubled. Twitter additionally believes the attackers might have tried to promote the usernames of compromised accounts.
More disturbingly, Twitter says the knowledge of eight accounts was downloaded by way of ‘Your Twitter Data’:
For as much as eight of the Twitter accounts concerned, the attackers took the extra step of downloading the account’s data by way of our “Your Twitter Data” instrument. This is a instrument that’s meant to supply an account proprietor with a abstract of their Twitter account particulars and exercise. We are reaching out on to any account proprietor the place we all know this to be true. None of the eight have been verified accounts.
This contains account historical past, apps and units, exercise, pursuits and advert information, contacts, Tweet historical past, apps with entry to your Twitter, muted and blocked accounts, profile information, Direct Messages, media, and extra.
Twitter says it’s persevering with to analyze the assault alongside regulation enforcement. Twitter reiterates that the overwhelming majority of Twitter customers weren’t affected by the incident. Of the 130 that have been, attackers weren’t in a position to view earlier passwords however have been in a position to see private data together with e-mail addresses and telephone numbers. Of the 45 accounts taken over, the injury is unclear however actually worse.
Twitter says it is usually working to revive entry to account homeowners nonetheless locked out for the reason that breach, primarily customers who’ve reset their passwords in the final 30 days.
Twitter mentioned it was “acutely aware of our responsibilities to the people” who use its service, including that it was “embarrassed”, “disappointed”, and “more than anything, we’re sorry.”