On July 15, in the late afternoon, multiple notable verified Twitter accounts were hacked. The “hacker” accessed the accounts and then began tweeting across the platform. According to Twitter the tweets were posted by the bad actor gaining access to Twitter’s account management portals. The accounts owned by high-profile celebrities and well-known business owners tweeted out an account number with messages claiming they could send double the bitcoin the user sent them. After tracing the account number, it was found over $100,000 in bitcoin was sent to the account.

A screenshot of a cell phone

Description automatically generated
Courtesy of thehackernews.com

Twitter Support tweeted this statement following the breach, “We are aware of a security incident impacting accounts on Twitter. We are investigating and taking steps to fix it. We will update everyone shortly.”

After more investigation, they tweeted, “We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tool. We know they used this access to take control of many highly-visible (including verified) accounts and Tweet on their behalf. We’re looking into what other malicious activity they may have conducted or information they may have accessed and will share more here as we have it.”

Twitter has not released the full extent of the attack, but one can imagine with the capability to post a tweet there is a high likelihood messages, user data such as phone numbers and email addresses, as well as login information could have been obtained through this attack.

With the amount of information (and alleged disinformation) coming through social media it is critical secure data stays off these platforms. Had this attack been conducted on less public profiles the likelihood of it making headlines is low. This also begs the question as to what attack is coming next utilizing the information obtained through this incident. 

SpearTip protects clients from situations just like this. Our ShadowSpear® Platform provides a way to defend your company and preserves valuable brand reputation. This proves Multi-Factor authentication is not full proof, and further security safeguards must be put in place by companies like this.

Side note–Twitter’s stock dropped 4% following the news of this breach, and the same type of reputational decline can happen on a smaller scale for companies that experience this.

For more information on how to protect your environment, visit speartip.com or email [email protected] to speak with a cybersecurity professional.

24/7 Breach Response: 833.997.7327