Twitter Inc revealed hackers focused simply 130 accounts through the cyber-attack this week that compromised a number of the world’s most recognizable folks, although no passwords have been stolen.
The US firm stated the still-unknown perpetrators had gained management of a subset of these accounts and have been in a position to ship tweets. Twitter has blocked knowledge downloads from affected accounts as its investigation continues, it stated on its on-line help web page.
“We’re working with impacted account homeowners and can proceed to take action over the following a number of days,” the corporate stated. “We’re persevering with to evaluate whether or not personal knowledge associated to those accounts was compromised, and can present updates if we decide that occurred.”
Particulars are trickling out concerning the hack that affected international political and enterprise leaders, together with Democratic presidential candidate Joe Biden, former President Barack Obama and Tesla Inc chief government officer Elon Musk.
Those that gained entry to the accounts used them to try a bitcoin rip-off, sending tweets asking for folks to provide them cash in trade for an even bigger fee in return.
Twitter is grappling with the worst safety breach in its 14-year historical past. It’s stated the hack was a part of a “coordinated social engineering assault” that focused its personal workers.
That granted hackers entry to a number of the firm’s inner techniques, after which high-profile person accounts, it stated. That pressured Twitter to quickly halt verified accounts from sending any tweets.
Twitter remains to be probing how the assault was carried out and has not disclosed if another info from the accounts — similar to knowledge like non-public messages — was compromised.
The corporate’s rationalization to date has ignited hypothesis over the id of the perpetrators and what they have been truly focusing on within the assault.
The dimensions of the endeavor and its timing – months earlier than the November US elections – have prompted some cybersecurity specialists to theorize that the assault masked a extra nefarious marketing campaign to grab delicate knowledge.
Some individuals who modified their passwords previously 30 days should be blocked from accessing their accounts, the corporate stated earlier, however that doesn’t imply these accounts have been compromised.
“We now have no proof that attackers accessed passwords,” Twitter stated in an replace Thursday. “At present, we don’t imagine resetting your password is critical.”
It should take “vital steps to restrict entry to inner techniques and instruments whereas our investigation is ongoing.”
US politicians rapidly known as on Twitter to share extra info.
“The flexibility of dangerous actors to take over distinguished accounts, even fleetingly, alerts a worrisome vulnerability on this media setting,” stated Democratic Senator Mark Warner, vice chairman of the Intelligence Committee, and one of many tech business’s most vocal critics.
The Federal Bureau of Investigation can be investigating the hack.
Learn: Twitter is testing audio tweets