📱 Technology🌍 World

Details of the largest accounts hacking operation in Twitter’s history

تفاصيل أكبر عملية اختراق للحسابات في تاريخ تويتر

By Joseph Menn and Raphael Satter | Reuters

SAN FRANCISCO/WASHINGTON: The extraordinary hacking spree that hit Twitter on Wednesday, leading it to briefly muzzle some of its most widely followed accounts, is drawing questions about the platform’s security and resilience in the run-up to the U.S. presidential election.

Twitter said late Wednesday hackers obtained control of employee credentials to hijack accounts including those of Democratic presidential candidate Joe Biden, former president Barack Obama, reality television star Kim Kardashian, and tech billionaire and Tesla founder Elon Musk.

In a series of tweets, the company said: “We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools.”

The hackers then “used this access to take control of many highly-visible (including verified) accounts and Tweet on their behalf.”

The company statements confirmed the fears of security experts that the service itself – rather than users – had been compromised.

Twitter’s role as a critical communications platform for political candidates and public officials, including President Donald Trump, has led to fears that hackers could wreak havoc with the Nov. 3 presidential election or otherwise compromise national security.

Adam Conner, vice president for technology policy at the Center for American Progress, a liberal think-tank, said on Twitter: “This is bad on July 15 but would be infinitely worse on November 3rd.”

BITCOIN BOUNTY

Posing as celebrities and the wealthy, the hackers asked followers to send the digital currency bitcoin to a series of addresses. By evening, 400 bitcoin transfers were made worth a combined $120,000. Half of the victims had funds in U.S. bitcoin exchanges, a quarter in Europe and a quarter in Asia, according to forensics company Elliptic.

Those transfers left history that could help investigators identify the perpetrators of the hack. The financial damage may be limited because multiple exchanges blocked other payments after their own Twitter accounts were targeted.

The damage to Twitter’s reputation may be more serious. Most troubling to some was how long the company took to stop the bad tweets.

“Twitter’s response to this hack was astonishing. It’s the middle of the day in San Francisco, and it takes them five hours to get a handle on the incident,” said Dan Guido, CEO of security company Trail of Bits.

An even worse scenario was that the bitcoin fraud was a distraction for more serious hacking, such as harvesting the direct messages of the account holders.

Twitter said it was not yet certain what the hackers may have done beyond sending the bitcoin messages.

“We’re looking into what other malicious activity they may have conducted or information they may have accessed and will share more here as we have it,” the company said.

Mass compromises of Twitter accounts via theft of employee credentials or problems with third-party applications that many users employ have occured before.

Wednesday’s hack was the worst to date. Several users with two-factor authentication – a security procedure that helps prevent break-in attempts – said they were powerless to stop it.

“If the hackers do have access to the backend of Twitter, or direct database access, there is nothing potentially stopping them from pilfering data in addition to using this tweet-scam as a distraction,” said Michael Borohovski, director of software engineering at security company Synopsys.

تعرضت حسابات عدد من كبار السياسيين ورجال الأعمال على تويتر للاختراق الإلكتروني، في حين تقول تويتر إنها تنظر في الأمر، وستصدر بيانا حول الموضوع.

ومن الحسابات المُخترقة حساب جو بايدن مرشح الديمقراطيين للرئاسيات، والذي شغل منصب نائب الرئيس الأميركي سابقا، ومايك بلومبرغ، ومغني الراب الأميركي الشهير كاني ويست.

كما تعرضت حسابات مشاهير آخرين -منها الحسابان الرسميان للمليارديرين بيل غيتس وإيلون ماسك، وحسابا شركتي آبل وأوبر- للاختراق أيضا، إذ طلبت الحسابات تبرعات عبر العملة الرقمية “بيتكوين”.

وجاء في التغريدات المقرصنة -التي ما لبثت أن حُذفت- أن أمام كل متابع لهذه الحسابات مهلة ثلاثين دقيقة لكي يرسل إلى عنوان محدد مبلغا بعملة البيتكوين، ليحصل مقابلها على ضعف هذا المبلغ.

وسارع كاميرون وينكليفوس، الشريك المؤسس في شركة “جيميني” للتبادلات بالعملات الرقمية، إلى التحذير من عملية القرصنة هذه، وقال في تغريدة على حسابه الرسمي في تويتر “هذه عملية احتيال، لا تشتركوا فيها”.

وفي حين ذكرت تعليقات ومنشورات على تويتر أن آلاف الدولارات بعملة البيتكوين أرسلها على الأرجح من وقعوا ضحية هذه العملية الاحتيالية؛ قال موقع تويتر إنه “يراجع” ما جرى، وسيُصدر قريبا بيانا بهذا الشأن.

وما إن شاع خبر هذه القرصنة حتى هوى سهم تويتر بنسبة 4% في التعاملات الإلكترونية في وول ستريت بعد إغلاق جلسة التداولات.

المصدر : وكالات

Like
Like Love Haha Wow Sad Angry
Show More

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button

Subscribe to our mailing list

* indicates required
Email Format