Several high-profile Twitter accounts hacked including Biden, billionaires, and corporate accounts hacked in Bitcoin scam. The scam appeared to be a targeted widespread operation that affects multiple accounts.
The scam appears to be tricking the users sending payments to a BTC address and in return, the attacker said that they would be sending doubling the payments.
The hack is something unusual, and still not know how the attack took place, in the hack attackers took over complete control of the account, also changed the email address.
The widespread hack suggests that attackers may gain broad access to internal controls, the scam started after 4 PM ET and lasts for more than two hours.
Many high-profile accounts were hijacked in a quick rapid session, the chaos started after Tesla CEO Elon Musk’s Twitter account hacked and the attacker posted a bitcoin scam message.
Following that Microsoft co-founder Bill Gates’ account found to be compromised and the same scam message has been posted.
After the initial wave of tweets, the following high-profile Twitter accounts Apple, Uber, former President Barack Obama, Amazon CEO Jeff Bezos, Democratic presidential candidate Joe Biden, hip-hop mogul Kanye West, and former New York City mayor and billionaire Mike Bloomberg also posted with the same scam message.
The attack not only targets high-profile accounts, but it also targets popular Twitter accounts such as Cameron and Tyler Winklevoss’ Gemini cryptocurrency exchange and widely used wallet app Coinbase. In addition to that Square’s Cash App accounts found to be compromised.
Cameron Winklevoss mentioned in a tweet that the Gemini account has a strong password and also two-factor authentication enabled.
It seems some people felt with the scam and the attackers harvested around $120,000 with scam according to the BTC address. With all the scam messages posted the BTC address remains the same.
Twitter Internal Admin Tool
According to the Motherboard report following the hack of the high-profile Twitter account, attackers shared a snapshot of the Internal Twitter user admin tool used by employees of Twitter.
The motherboard also obtained the screenshots of the tool shared in the dark web, in one of the screenshots it shows Binance which is the part of the hack.
After more than an hour Twitter acknowledges the situation and posted a tweet “We are aware of a security incident impacting accounts on Twitter. We are investigating and taking steps to fix it. We will update everyone shortly.”
The company initially stopped the “ability to Tweet, reset your password, and some other account functionalities.”
Twitter CEO Jack Dorsey said that “Tough day for us at Twitter. We all feel terrible this happened. We’re diagnosing and will share everything we can when we have a more complete understanding of exactly what happened.”
In a recent update, Twitter said that it was a result of the coordinated social engineering attack targeted a twitter employee who had access to internal systems and tools. Also, they are checking for other malicious activities with the accounts.
This story is developing. Stay tuned for updates.