Attackers Manipulated Staff To Access Internal Systems: Twitter On Hack.

Attackers Manipulated Staff To Access Internal Systems: Twitter On Hack

Twitter said attackers targeted Twitter employees through a social engineering scheme

New Delhi:

Twitter today released information about the massive hack of accounts of high-profile users from Elon Musk to Joe Biden on July 15. The attack, which Twitter and federal police are investigating, started with a playful message between hackers on the platform Discord, a chat service popular with gamers, The New York Times reported on Friday.

"As the investigation of this incident is unfolding, there are some details - particularly around remediation - that we are not providing right now to protect the security of the effort. We will provide more details, where possible in the future, so that the community and our peers may learn and benefit from what happened," Twitter posted on its official blog this morning.

"At this time, we believe attackers targeted certain Twitter employees through a social engineering scheme. What does this mean? In this context, social engineering is the intentional manipulation of people into performing certain actions and divulging confidential information," the microblogging website run by Jack Dorsey said.

"The attackers successfully manipulated a small number of employees and used their credentials to access Twitter's internal systems, including getting through our two-factor protections. As of now, we know that they accessed tools only available to our internal support teams to target 130 Twitter accounts," Twitter said.

"For 45 of those accounts, the attackers were able to initiate a password reset, login to the account, and send Tweets. We are continuing our forensic review of all of the accounts to confirm all actions that may have been taken. In addition, we believe they may have attempted to sell some of the usernames," it said.

"For up to eight of the Twitter accounts involved, the attackers took the additional step of downloading the account's information through our 'Your Twitter Data' tool. This is a tool that is meant to provide an account owner with a summary of their Twitter account details and activity. We are reaching out directly to any account owner where we know this to be true," Twitter said.

"We became aware of the attackers' action on Wednesday, and moved quickly to lock down and regain control of the compromised accounts. Our incident response team secured and revoked access to internal systems to prevent the attackers from further accessing our systems or the individual accounts. As mentioned above, we are deliberately limiting the detail we share on our remediation steps at this time to protect their effectiveness and will provide more technical details, where possible, in the future," Twitter said.

Posts trying to dupe people into sending hackers the virtual currency bitcoin were tweeted by the official accounts of Apple, Uber, Kanye West, Bill Gates, Barack Obama and many others on Wednesday.

With inputs from AFP

Comments

Related news

Michigan first U.S. state to dedicate highway lanes to automated vehicles

Organizers say the project will begin with a two-year study to figure out whether existing lanes or shoulders could be used or new lanes need to be built, and that it is the first of its kind in the U.S.

Trump promotes false conspiracy claiming Kamala Harris ineligible for White House.

Trump told reporters he had ``heard'' rumours, which are false, that Harris, a Black woman and U.S.-born citizen whose parents were immigrants, does not meet the requirement to serve in the White House.

US Seizes Iranian Fuel Cargoes For First Time: Report.

The US government has for the first time seized vessels allegedly loaded with Iranian fuel in violation of sanctions imposed by the Trump administration, the Wall Street Journal reported on Thursday,...

North Korea lifts lockdown in border town after coronavirus threat passes.

While easing the lockdown, Kim Jong Un still ordered communities not to accept any external assistance related to the floods caused by weeks of heavy rain.

TikTok Deal Must Benefit US And Ensure «Total Security» : Donald Trump.

President Donald Trump said on Thursday that any deal to sell Chinese-owned social media app TikTok to an American company must "substantially" benefit the United States and provide "total security."

By continuing to browse World News (UAZMI), you acknowledge that you have read the Terms of Use and agree to the use of cookies