Several High-Profile Accounts Hacked in the Biggest Twitter Hack of All Time

[Nytro]

Several High-Profile Accounts Hacked in the Biggest Twitter Hack of All Time

July 15, 2020Ravie Lakshmanan

 

 

Social media platform Twitter, earlier today on Wednesday, was on fire after it suffered one of the biggest cyberattacks in its history.

A number of high-profile Twitter accounts, including those of US presidential candidate Joe Biden, Amazon CEO Jeff Bezos, Bill Gates, Elon Musk, Uber, and Apple, were breached simultaneously in what's a far-reaching hacking campaign carried out to promote a cryptocurrency scam.

The broadly targeted hack posted similar worded messages urging millions of followers to send money to a specific bitcoin wallet address in return for larger payback.

"Everyone is asking me to give back, and now is the time," a tweet from Mr Gates' account said. "You send $1,000, I send you back $2,000."

Twitter termed the security incident as a "coordinated social engineering attack" against its employees who access its internal tools.

As of writing, the scammers behind the operation have amassed nearly $120,000 in bitcoins, suggesting that unsuspecting users have indeed fallen for the fraudulent scheme.

"We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools," the company said in a series of tweets.

"Internally, we've taken significant steps to limit access to internal systems and tools while our investigation is ongoing."
 

It's not immediately clear who was behind the attack, or the attackers could have had access to direct messages sent to or from the affected accounts.

The attack appears to have been initially directed against cryptocurrency-focused accounts, such as Bitcoin, Ripple, CoinDesk, Gemini, Coinbase and Binance, all of which were hacked with the same message:

"We have partnered with CryptoForHealth and are giving back 5000 BTC to the community," followed by a link to a phishing website that has since been taken down.

Following the tweets, the accounts for Apple, Uber, Mike Bloomberg, and Tesla and SpaceX CEO Elon Musk all posted tweets soliciting bitcoins using the exact same Bitcoin address as the one included on the CryptoForHealth website.

Although the tweets from the compromised accounts have been deleted, Twitter took the extraordinary step of temporarily stopping many verified accounts marked with blue ticks from tweeting altogether.

Account hijacks on Twitter have happened before, but this is the first time it's happened at such an unprecedented scale on the social network, leading to speculations that hackers grabbed control of a Twitter employee's administrative access to "take over a prominent account and tweet on their behalf" without knowing their passwords or two-factor authentication codes.

Security researchers also found that the attackers had not only taken over the victims' accounts, but also changed the email address associated with the account to make it harder for the real user to regain access.

Last year, Twitter chief executive Jack Dorsey's account was hacked in a SIM swapping attack, allowing an unauthorized third-party to post tweets via text messages from the phone number. Following the incident, Twitter discontinued the feature to send tweets via SMS earlier this year in most countries.

Given the widespread scope of the campaign, the damage could have been far more catastrophic. But the motive of the adversaries seems to all but indicate this was a quick money-making scam.

"The accounts appear to have been compromised in order to perpetuate cryptocurrency fraud," the FBI's San Francisco field office said in a statement. "We advise the public not to fall victim to this scam by sending cryptocurrency or money in relation to this incident."

 

Found this article interesting? Follow THN on Facebook, Twitter  and LinkedIn to read more exclusive content we post.

 

Sursa: https://thehackernews.com/2020/07/verified-twitter-hacked.html

[gigiRoman]

Adica angajatii puteau sa faca ce voiau in mediu de PRD? Ahahahahahahahahaha.

Zici ca e reclama la FNI.

[Nytro]

Probabil cineva de la Support, angajati care by design au acces la productie.

Poate lumea o sa ia mai in serios acum acel "insider threat" pe care toti il considera o porcarie...

[gigiRoman]

La noi in corporatie e cu NPA user si cand ai un task pe productie primesti o parola temporara (gen cateva ore) cu acord de la 2 superiori si strict pe resursa de care ai nevoie.

Se stie in permanenta cine, unde si de ce s-a logat pe productie.

[Massaro]

Citeam mai devreme postul tau cu apelul telefonic. Ma intreb eu acum, sunt eu prea paranoic sau e coincidenta ca s-au spart conturile oamenilor de care am auzit anul asta cel mai mult? Gates (faza cu Covid), Kanye West (faimosul rapper negru care vrea sa fie urmatorul presedinte, asta dupa Black Lives Matter. El e negru, get it?, Joe Biden, alt candidat, Elon Musk (care-l sustine pe Kanye) s.a.m.d? Sunt eu paranoic, dar e interesant sa te gandesti si asa. 

 

E interesanta treaba, ma asteptam sa scoata mai multi bani de pe scam-ul asta. E multa prostie, dar lumea in ziua de astazi e foarte informata, se afla repede despre unele stiri. 

[Zatarra]

Nu s-a spart nici un cont, cel mai probabil au facut auth bypass.

 

Era un post interesant pe linkedin care zicea diferenta dintre a raporta un bug printr-un program bug bounty si a profita in acest fel. Diferenta era undeva la cateva sute de mii de euro. (pe oauth bypass twitter da 7700 dolari, ceea ce si mie sincer mi se pare extrem de putin)

 

Anyway, ma bucur ca au muscat-o, poate poate vor lua securitatea mai in serios (nu doar twitter).

[gigiRoman]

1 hour ago, Zatarra said:

Nu s-a spart nici un cont, cel mai probabil au facut auth bypass.

 

Era un post interesant pe linkedin care zicea diferenta dintre a raporta un bug printr-un program bug bounty si a profita in acest fel. Diferenta era undeva la cateva sute de mii de euro. (pe oauth bypass twitter da 7700 dolari, ceea ce si mie sincer mi se pare extrem de putin)

 

Anyway, ma bucur ca au muscat-o, poate poate vor lua securitatea mai in serios (nu doar twitter).

Te referi la tweetul asta: https://mobile.twitter.com/svblxyz/status/1283501447615787008 ?

[Zatarra]

1 hour ago, gigiRoman said:

Te referi la tweetul asta: https://mobile.twitter.com/svblxyz/status/1283501447615787008 ?