Welcome, Guest: Register On Nairaland / LOGIN! / Trending / Recent / New
Stats: 3,217,618 members, 8,034,865 topics. Date: Sunday, 22 December 2024 at 02:15 PM

Hackers Convinced Twitter Employee To Help Them Hijack Accounts - Crime - Nairaland

Nairaland Forum / Nairaland / General / Crime / Hackers Convinced Twitter Employee To Help Them Hijack Accounts (41422 Views)

Kidnappers Hijack GIGM Bus With Abuja Passengers Enroute Rivers State! (video) / Saudi Arabia Employer Forces An African Woman Employee To Breastfeed His Dogs / Armed Robbers Hijack Bullion Van In Delta (Photos/video) (2) (3) (4)

(1) (2) (3) (4) (Reply) (Go Down)

Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Mynd44: 8:06pm On Jul 16, 2020
After a wave of account takeovers, screenshots of an internal Twitter user administration tool are being shared in the hacking underground.

A Twitter insider was responsible for a wave of high profile account takeovers on Wednesday, according to leaked screenshots obtained by Motherboard and two sources who took over accounts.

On Wednesday, a spike of high profile accounts including those of Joe Biden, Elon Musk, Bill Gates, Barack Obama, Uber, and Apple tweeted cryptocurrency scams in an apparent hack.

"We used a rep that literally done all the work for us," one of the sources told Motherboard. The second source added they paid the Twitter insider. Motherboard granted the sources anonymity to speak candidly about a security incident. A Twitter spokesperson told Motherboard that the company is still investigating whether the employee hijacked the accounts themselves or gave hackers access to the tool.

The accounts were taken over using an internal tool at Twitter, according to the sources, as well as screenshots of the tool obtained by Motherboard. One of the screenshots shows the panel and the account of Binance; Binance is one of the accounts that hackers took over today. According to screenshots seen by Motherboard, at least some of the accounts appear to have been compromised by changing the email address associated with them using the tool.

In all, four sources close to or inside the underground hacking community provided Motherboard with screenshots of the user tool. Two sources said the Twitter panel was also used to change ownership of some so-called OG accounts—accounts that have a handle consisting of only one or two characters—as well as facilitating the tweeting of the cryptocurrency scams from the high profile accounts.

Twitter has been deleting some screenshots of the panel and has suspended users who have tweeted them, claiming that the tweets violate its rules.

The panel is a stark example of the issue of insider data access at tech companies. Whereas in other cases hackers have bribed workers to leverage tools over individual users, in this case the access has led to takeovers of some of the biggest accounts on the social media platform and tweeted bitcoin related scams in an effort to generate income.

The screenshots show details about the target user's account, such as whether it has been suspended, is permanently suspended, or has protected status.

One of the screenshots is a Twitter user posting images of the panel themselves. At the time of writing that account has been suspended.

Data breach monitoring and prevention service Under The Breach obtained a similar screenshot and tweeted it as the hackers hijacked several accounts. The person in control of the Under The Breach account told Motherboard Twitter then removed the tweet with the screenshot and suspended them for 12 hours. A message replacing the tweet now says it violated the Twitter rules.

A Twitter spokesperson told Motherboard in an email that, "As per our rules, we're taking action on any private, personal information shared in Tweets."

After the publication of this piece, Twitter said in a tweet that "We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools."

Other hijacked accounts include Mike Bloomberg, and cryptocurrency platforms Coinbase and Gemini. The accounts falsely announced they had partnered up with an organization called CryptoForHealth which claims it was going to provide people with bitcoin as long as they sent some to an address first.

Shortly after the spike of takeovers, Twitter itself tweeted that users may be unable to reset their passwords or tweet while the company addresses the issue.

Within an hour of the breach, Republican Sen. Josh Hawley wrote a letter to Twitter CEO Jack Dorsey asking for more information about the hack, including how the hack occurred, how many users were compromised, and whether the hack affected President Trump's account. Hawley said "please reach out immediately to the Department of Justice and the Federal Bureau of Investigation and take any necessary measures to secure the site before this breach expands."

In 2017, a Twitter worker briefly deleted President Donald Trump's account before it was quickly reinstated.

Two former Twitter employees previously abused their access to spy on users for the Saudi regime, according to the Justice Department.

All tech companies face the issue of malicious insiders. Motherboard has previously revealed how Facebook employees used their privilege access to user data to stalk women; how Snapchat workers had a tool called Snaplion that provides information on users; and how MySpace employees abused a tool called "Overlord" to spy on users during the site's heyday.
https://www.vice.com/en_us/article/jgxd3d/twitter-insider-access-panel-account-hacks-biden-uber-bezos

1 Like

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by LongLife4all: 8:10pm On Jul 16, 2020
Wonderful

1 Like

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by TransflectTP(m): 8:12pm On Jul 16, 2020
Ok

My suspicion wasn't wrong anyways. I had suspected an insider to be among the hackers.

On the hand, Transflect Transport remain the No. 1 trusted and reliable car hiring and bike delivery firm in Lagos. We are poised to give you all round satisfaction when it comes to car leasing and bike delivery services. For enquiries and booking, call us: 081 03 003 638
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Makavelli25: 8:12pm On Jul 16, 2020
I knew it was an inside job Laslas no site is 100% safe Unless its GOD that coded it.

157 Likes 8 Shares

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by TransflectTP(m): 8:14pm On Jul 16, 2020
That really showed no site is safe under the sun

20 Likes

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Makavelli25: 8:14pm On Jul 16, 2020
TransflectTP:
Ok
TakeThem:
angry
LongLife4all:
Wonderful
I have been strugling so hard to make FTC and you guys squandered that dream

cry cry cry cry make una apologize by buying airtime for me

31 Likes 2 Shares

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Edopesin: 8:14pm On Jul 16, 2020
I knew it had to be an inside job

3 Likes 1 Share

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Nobody: 8:17pm On Jul 16, 2020
Am very sure the hackers are Trump supporters.

12 Likes 2 Shares

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by tundchip2: 8:18pm On Jul 16, 2020
My4:

The accounts were taken over using an internal tool at Twitter, according to the sources, as well as screenshots of the tool obtained by Motherboard. One of the screenshots shows the panel and the account of Binance;.
T-MAC geng stuffs

2 Likes

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by chukwuibuipob: 8:26pm On Jul 16, 2020
sad
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Slawormir: 8:26pm On Jul 16, 2020
Damnnnnn niggarrr
Isoright

YorubaKinging:
Science and technology has many flaws
They always need upgrade frequently
But the sun and the moon that God created never had any upgrade but we still see it everyday
No scientists like Almighty God

Forget all those talk

That sun and moon way we go soon modify and even downgrade

3 Likes 2 Shares

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by YorubaKinging: 8:26pm On Jul 16, 2020
Science and technology has many flaws

They always need upgrade frequently

But the sun and the moon that God created never had any upgrade but we still see it everyday

No scientists like Almighty God

193 Likes 18 Shares

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by ODJ124(m): 8:26pm On Jul 16, 2020
Enemies of progress..... everywhere...
Why would one want the downfall of a company here or she works in.. it's absurd..

2 Likes

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by chukwuibuipob: 8:26pm On Jul 16, 2020
wink
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by onegbdata: 8:27pm On Jul 16, 2020
Man made

Man destroy

1 Like

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Righteousness89(m): 8:27pm On Jul 16, 2020
Every Corner we look, we see Prophecies being Fulfilled!

Daniel 12:4
But thou, O Daniel, shut up the words, and seal the book, even to the time of the end: many shall run to and fro, and knowledge shall be increased.

Brothers are Sisters live Ready! With the way last days Prophecies are being Fulfilled, We are Getting out of this World soonest!

16 Likes 2 Shares

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by CalabarPikin: 8:27pm On Jul 16, 2020
Inside hackers.....hackers dey
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Nanavati(m): 8:27pm On Jul 16, 2020
from this action it shows that no site is safe
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Nobody: 8:27pm On Jul 16, 2020
Thank God they did not mention Nigerian here

Twitter system is too volatile

Over 800 bitcoin stolen in a giffy.

10 Likes

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Eriggs: 8:27pm On Jul 16, 2020
na wa. hackers and some foolish scammers on nairaland never reach dat level,
na to dey clone members monikers dem still dey do for here now. if u don't look closely, you will think it is your moniker, until you see created 2 hours ago!!

5 Likes

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by ruggedtimi(m): 8:27pm On Jul 16, 2020
Na wa
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by CODEIN: 8:27pm On Jul 16, 2020
I want to use this space as an opportunity to blast every codeine/drunk Nigerians on the other Twitter-hack threads who said Nigerians constitute the best hacker in the world.

Using phishing to fish people who dont know any better than the aboki shoe-maker’s Facebook username and password doesn’t make you an hacker.

Defacing the front page of JAMB/WAEC/NASS websites to put pictures of Tonto Dickay blowing Suen Oswea does not make you an hacker.

Changing the password of your friend’s facebook and instagram account because they forgot to log out doesnt make you hacker

Running video recording app on your phone before handing it to that poor fellow who just wanted to check his facebook messenger or twitter and sign out, while it record their keystroke as video, doesn’t make you an hacker.

Hacking is about penetrating what is built to be impenetrable which is why it is called gaining unauthorised access to something.

For you to deem yourself an hacker in Nigeria, try

1. hacking the bank account into bank account of any of the bloated and potbelly legislooters and sinators and evil demons politicians who are damaging this country and continue to embezzle and steal away all our money since 1960.

2. Try hacking...

a. Nairaland.com

b. Lindaikeji.com

c. Websites of every money-making Church who cant help the suffering masses

d. all Nigeria jihadist related sites where potential hokoharamist love to chill out

Until Nigerian yoots can do 1. and 2. consitently, never ever call yourself, anyone or hush the puppy and invictus the obina a hacker

Cc neoblack

58 Likes 4 Shares

Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Laravel23: 8:27pm On Jul 16, 2020
Edopesin:
I knew it had to be an insider job
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by Zontage: 8:28pm On Jul 16, 2020
I thought as much, this must be handwork of insiders, loopholes etc.
Re: Hackers Convinced Twitter Employee To Help Them Hijack Accounts by arazanbal: 8:28pm On Jul 16, 2020
everything in this world has a price

2 Likes 1 Share

(1) (2) (3) (4) (Reply)

White Man Dupes Nigerian Journalist With Fake Currency(photos) / Young Guy Consumes N150 Worth Of Raw Pepper To Win A Bet In Owerri (Photo) / EFCC Storms Ede, Osun State, Arrests 64 Suspected YAHOO BOYS, Recovers Exotic Ca

(Go Up)

Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health
religion celebs tv-movies music-radio literature webmasters programming techmarket

Links: (1) (2) (3) (4) (5) (6) (7) (8) (9) (10)

Nairaland - Copyright © 2005 - 2024 Oluwaseun Osewa. All rights reserved. See How To Advertise. 31
Disclaimer: Every Nairaland member is solely responsible for anything that he/she posts or uploads on Nairaland.