Thursday, November 30, 2023

Twitter Hack – Barack Obama, Joe Biden, Elon Musk, Apple, and other Twitter Accounts Hacked

Several high-profile Twitter accounts hacked including Biden, billionaires, and corporate accounts hacked in Bitcoin scam. The scam appeared to be a targeted widespread operation that affects multiple accounts.

The scam appears to be tricking the users sending payments to a BTC address and in return, the attacker said that they would be sending doubling the payments.

The hack is something unusual, and still not know how the attack took place, in the hack attackers took over complete control of the account, also changed the email address.

Twitter Hack

The widespread hack suggests that attackers may gain broad access to internal controls, the scam started after 4 PM ET and lasts for more than two hours.

Many high-profile accounts were hijacked in a quick rapid session, the chaos started after Tesla CEO Elon Musk’s Twitter account hacked and the attacker posted a bitcoin scam message.

Following that Microsoft co-founder Bill Gates’ account found to be compromised and the same scam message has been posted.

After the initial wave of tweets, the following high-profile Twitter accounts Apple, Uber, former President Barack Obama, Amazon CEO Jeff Bezos, Democratic presidential candidate Joe Biden, hip-hop mogul Kanye West, and former New York City mayor and billionaire Mike Bloomberg also posted with the same scam message.

The attack not only targets high-profile accounts, but it also targets popular Twitter accounts such as Cameron and Tyler Winklevoss’ Gemini cryptocurrency exchange and widely used wallet app Coinbase. In addition to that Square’s Cash App accounts found to be compromised.

Cameron Winklevoss mentioned in a tweet that the Gemini account has a strong password and also two-factor authentication enabled.

It seems some people felt with the scam and the attackers harvested around $120,000 with scam according to the BTC address. With all the scam messages posted the BTC address remains the same.

Twitter Internal Admin Tool

According to the Motherboard report following the hack of the high-profile Twitter account, attackers shared a snapshot of the Internal Twitter user admin tool used by employees of Twitter.

The motherboard also obtained the screenshots of the tool shared in the dark web, in one of the screenshots it shows Binance which is the part of the hack.

After more than an hour Twitter acknowledges the situation and posted a tweet “We are aware of a security incident impacting accounts on Twitter. We are investigating and taking steps to fix it. We will update everyone shortly.”

The company initially stopped the “ability to Tweet, reset your password, and some other account functionalities.”

Twitter CEO Jack Dorsey said that “Tough day for us at Twitter. We all feel terrible this happened. We’re diagnosing and will share everything we can when we have a more complete understanding of exactly what happened.”

In a recent update, Twitter said that it was a result of the coordinated social engineering attack targeted a twitter employee who had access to internal systems and tools. Also, they are checking for other malicious activities with the accounts.

This story is developing. Stay tuned for updates.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Also Read

Twitter CEO Jack Dorsey Account Hacked using Sim Swapping Attack

Twitter Bug Exposed Location Data of iOS Users to Advertiser

India’s Biggest Star Amitabh Bachchan’s Twitter Account Hacked

Website

Latest articles

Hackers Using Weaponized Invoice to Deliver LUMMA Malware

Hackers use weaponized invoices to exploit trust in financial transactions, embedding malware or malicious...

US-Seized Crypto Currency Mixer Used by North Korean Lazarus Hackers

The U.S. Treasury Department sanctioned the famous cryptocurrency mixer Sinbad after it was claimed...

CISA Warns Hackers Exploiting Wastewater Systems Logic Controllers

In a disconcerting turn of events, cyber threat actors have set their sights on...

Zyxel Command Injection Flaws Let Attackers Run OS Commands

Three Command injection vulnerabilities have been discovered in Zyxel NAS (Network Attached Storage) products,...

North Korean Hackers Attacking macOS Using Weaponized Documents

Hackers often use weaponized documents to exploit vulnerabilities in software, which enables the execution...

Most Popular Websites Still Allow Users To Have Weak Passwords

The latest analysis shows that tens of millions of people are creating weak passwords...

Chrome Zero-Day Vulnerability That Exploited In The Wild

Google has fixed the sixth Chrome zero-day bug that was exploited in the wild this...

API Attack Simulation Webinar

Live API Attack Simulation

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked.The session will cover:an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

Related Articles