Skip to main content

Twitter says up to 8 accounts had all their data downloaded during its giant hack suggesting the hackers were after more than just Bitcoin

* Twitter gave an update late on Friday on its investigation into the highly visible hack of dozens of verified accounts on Wednesday. * Twitter said 130 accounts were targeted, of which 45 had their passwords reset and tweets sent by the hackers. * Up to eight accounts also had their data fully downloaded by the hackers. None were Verified accounts, the company said. * Visit Business Insider's homepage for more stories. The hackers who hijacked dozens of high-profile Twitter accounts this week may have had a second, less visible purpose. The hack took place on Wednesday when the hackers successfully gained access to accounts belonging to public figures, including Barack Obama, Joe Biden, Elon Musk, Bill Gates, and Kim Kardashian, as well as some company accounts like Apple and Uber. Hijacking these accounts, the hackers tweeted out a Bitcoin scam, asking followers to send Bitcoin to a specific wallet address and promising to send back double the amount. Twitter said on Friday that it believed 130 accounts were affected by the hack, and that only a "small subset" actually tweeted anything. Later that same day in a blog post, Twitter offered some more detail. "As of now, we know that they accessed tools only available to our internal support teams to target 130 Twitter accounts. For 45 of those accounts, the attackers were able to initiate a password reset, login to the account, and send Tweets," Twitter said. But sending tweets to a Bitcoin scam doesn't appear to have been the hackers' only objective. Out of the 130 compromised accounts, Twitter says up to eight had their data fully downloaded by the hackers using the "Your Twitter Data" tool, allowing users to download all the data relating to their account, including their private messages. Twitter said none of these eight accounts were verified, suggesting they may not have been any of the high-profile celebrity or company accounts that tweeted links to the Bitcoin scam. However, some of the hijacked accounts were popular but unverified accounts (e.g. the popular @TheTweetOfGod). Twitter gave no details on which accounts these were or what they might have in common. Numerous reports have linked the attack with a community of hackers obsessed with so-called "OG" accounts with super-short Twitter handles. Cybersecurity journalist Brian Krebs reported that hours before the Bitcoin links started being tweeted on Wednesday, a handful of OG accounts, including "@6," were also hijacked. How did they do it Twitter also provided more detail about how the hackers managed to crack into its systems. Twitter said the hackers had managed to gain access to an internal company tool using a "coordinated social engineering attack," on Wednesday. Social engineering is a term which means hackers manipulate, trick, or convince their target to hand over access to a system, rather than technically hacking. "The attackers successfully manipulated a small number of employees and used their credentials to access Twitter's internal systems, including getting through our two-factor protections," Twitter said in its Friday blog. It did not say how the employees were manipulated. On Thursday, Motherboard reported that a source who took part in the hack claimed the attackers paid a Twitter employee. In its blog, the company said it would be implementing extra training to guard against social engineering. Twitter says it is still investigating the attack and is working with law enforcement. The FBI is looking into the hack. The company said it is also restoring access to the account holders who were locked out while it sought to reestablish control of the situation. At least one affected account appears to have gone back to its owner, as Tesla's Elon Musk started tweeting again late on Friday. SEE ALSO: Twitter says 'social engineering' led to the massive hack that targeted high-profile accounts like Barack Obama and Jeff Bezos. Here's what the technique involves and how to avoid it. Join the conversation about this story » NOW WATCH: Why thoroughbred horse semen is the world's most expensive liquid
https://bit.ly/2WA6YQn

Popular posts from this blog

Why an early exec quit unicorn food delivery startup Deliveroo to launch a food business in the middle of a pandemic

* A former Deliveroo exec has launched a market food hall startup in the middle of COVID-19. * Dan Warne was managing director of the unicorn startup until 2019, but has now launched Sessions Market as a community food hall concept to rejuvenate UK towns after the pandemic. * Warne says he hopes to bring his experience from Deliveroo, particularly about customer behavior, to the analogue world of food halls. * The first venue, Shelter Hall on Brighton seafront, launches July 4. * Visit Business Insider's homepage for more stories. On Saturday, the UK's bars, restaurants, and cinemas will fling their doors open to customers for the first time since a strict lockdown commenced in late March. Given continued public health concerns around the coronavirus pandemic, it might be unwise to open a new food business right now. But Dan Warne, a former high-level executive at British unicorn startup Deliveroo, has launched Sessions Market, a series of community-orientated food hal...
Read more

'What is the X-Ray feature on Amazon Prime Video?': How to find and view bonus material about TV shows and movies

* X-Ray is an exclusive feature on Amazon Prime Video that displays bonus material about a show or movie, similar to the bonus features on a DVD. * X-Ray can show you information about the actors in a scene, the musical soundtrack, trivia, and more. * To activate X-Ray, you generally only need to click or tap within a video that's currently playing.   * Visit Business Insider's Tech Reference library for more stories. Amazon Prime Video's X-Ray feature is, at least for now, not available on any other video streaming service. X-Ray works like the bonus features you find on a DVD or Blu-ray. With just a few clicks or taps, you can get additional information about many of the TV shows and movies on Prime Video. When you activate X-Ray, Prime displays an overlay on top of your show, offering additional information.  Check out the products mentioned in this article: Amazon Prime Video ($8.99 a month at Amazon) Roku (from $49.99 at Roku) There are several kinds of info...
Read more

Here are the 9 health-tech startups that got coronavirus stimulus loans to keep workers employed during the pandemic

* The Paycheck Protection Program, created by Congress as part of a $2 trillion coronavirus bailout, helped small businesses stay afloat as they struggled economically during the pandemic.  * Businesses were allowed to qualify for up to $10 million in loans.  * On Monday, the Trump administration released the list of companies that borrowed most of the money. We spotted some applications from health-tech companies among their ranks, many of which are backed by venture capital firms.  * Companies that applied for loans include ZocDoc, HealthTap, Bright.md, and Wildflower Health. * For more stories like this, sign up here for our healthcare newsletter, Dispensed. Health-tech startups were among the recipients of federal loans intended to help small businesses stay afloat during the coronavirus pandemic.  Several of the startups have raised tens of millions from venture capital firms. Still, their business models became strained amid the pandemic, they told Business Insider.  Eve...
Read more