Technical Editor: Mango Fruit! Editorial Department SegmentFault Report! Public Account: SegmentFault
A few days ago, a large number of Twitter accounts were hacked, including those of prominent Americans like Barack Obama and Elon Musk, who were used to post fraudulent messages about Bitcoin.
At the time, the swindler said this: “30 minutes to the designated account money, I will pay you double.” No one would believe it if it came from a normal person, but it did confuse a lot of people, making hackers nearly $120,000 in just a few hours.
Twitter has not stopped investigating the incident, even though the hacked accounts have had their permissions taken back. Today, Twitter released the results of its investigation, saying that the hackers broke into 36 accounts in total, and instead of stealing passwords, they gained access to employees’ credentials by gaining access to Twitter’s internal systems and bypassing authentication protections.
The internal tools used by Twitter were used to target 130 accounts, and the hackers launched password resets on 45 of them, giving them full access to the accounts and sending out tweets.
Among the 130 compromised accounts were those of Tesla CEO Elon Musk, former President Barack Obama, Microsoft CEO Bill Gates and Amazon CEO Jeff Bezos, and presidential candidate Joe Biden, among others. Hackers can see email addresses, phone numbers and other information in these accounts.
Twitter has not provided specific details about the breach of the 36 compromised accounts, but said the hackers did access the account of one Dutch official and that no other current or former officials were currently compromised.
Twitter is contacting affected account holders and is further securing its account system to prevent further attacks. Twitter is also rolling out company-wide endorsements to guard against similar situations.