Twitter provided an update approximate the wayward July 15th billboard that card-carrying hackers to tweet from some of the picked high-profile accounts on the service, in a blog post as well-built as a series of tweets appear Thursday evening. Twitter now says that a few employees were targeted in a phone spear phishing attack. While Twitter doesn't really say, that probably ways hackers alleged up Twitter employees while posturing as colleagues or members of Twitter's own self-defense team, as well-built as got them to acknowledge the credentials they use to comprisal centralized systems.
Twitter had ahead said its own vestment were compromised in the attack, except up until this point, the visitor hadn't specified how that had happened. "This billboard relied on a significant as well-built as concerted jeopardize to mislead irrevocable employees as well-built as exploit human vulnerabilities to proceeds comprisal to our centralized systems," Twitter said in a tweet from its support account.
By receiving hireling credentials, they were burly to yearing specific employees who had comprisal to our each support tools. They again targeted 130 Twitter accounts - Tweeting from 45, accessing the DM inbox of 36, as well-built as downloading the Twitter Documents of 7.
-- Twitter Support (@TwitterSupport) July 31, 2020
Twitter likewise reiterative that the attackers targeted 130 accounts, tweeted from 45, as well-built as accessed the instantaneous messages of 36, except popularly-priced the ordinal of accounts that had their Twitter documents downloaded (which would kumtux likewise included instantaneous messages) from "up to 8" to 7.
Twitter limited glossiness as well-built as locked accounts for some users in the incarnated residuum of the attack. While many glossiness kumtux come back, "some glossiness (namely, accessing the Your Twitter Data download feature) as well-built as processes kumtux been impacted," Twitter said in its blog post. The visitor also said it has "significantly limited" comprisal to its centralized vestment for the moment and is "improving our methods for audition as well-built as preventing inappropriate comprisal to our centralized systems."
We're accelerating several of our pre-existing self-defense workstreams as well-built as improvements to our tools. We are likewise improving our methods for audition as well-built as preventing inappropriate comprisal to our centralized systems as well-built as prioritizing self-defense work former many of our teams.
-- Twitter Support (@TwitterSupport) July 31, 2020
During the attack, hackers tweeted a bitcoin scam from the Twitter accounts of President Barack Obama, Egalitarian presidential candidate Joe Biden, Tesla as well-built as SpaceX CEO Elon Musk, Microsoft co-founder Coins Gates, as well-built as more. The FBI has launched an itemization into the attack.
No comments:
Post a Comment