• Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.

Twitter being hit with a 0 day attack. Apple, Bill Gates, Elon Musk and more hacked in a Bitcoin Scam

TTOOLL

TTOOLL

Member
So, Twitter has the power to post in behalf of users? That's it? The individual accounts weren't hacked, but Twitter itself was. This is really big. I hope more people finally see how much power they are giving away by using these "platforms".
 
MisterFalcon

MisterFalcon

Member
TTOOLL said:
So, Twitter has the power to post in behalf of users? That's it? The individual accounts weren't hacked, but Twitter itself was. This is really big. I hope more people finally see how much power they are giving away by using these "platforms".
Click to expand...

From what I see they got access to some backend that allows the update of the email address of the user, the one where password resets are sent to. And this update was done without 2FA so no one would be notified.

This seems to be a really opportunistic action and not some massive plan being executed. I can imagine some guy who sends mass spams to millions of email addresses to suddenly hit jackpot as some dumb Twitter admin clicks a link and he realizes what he has access to. He's got a few hours to work in, just enough time to set up a bitcoin scam for a few top users but not to really do anything more. Although it may have been possible to grab a dump of DMs from the accounts, I have no twitter account and have no idea how this would work.

Anyone who has twitter, say someone has access and wants to grab all your of DMs, is there a download all option or would you need some external plugin ?
 
H4ze

H4ze

Member
How dense do you have to be to fall for that, like honestly, it's really stupid...

Twitter was also a mistake, worst shit the Internet has ever seen.
 
ManaByte

ManaByte

Gold Member
MisterFalcon said:
From what I see they got access to some backend that allows the update of the email address of the user, the one where password resets are sent to. And this update was done without 2FA so no one would be notified.

This seems to be a really opportunistic action and not some massive plan being executed. I can imagine some guy who sends mass spams to millions of email addresses to suddenly hit jackpot as some dumb Twitter admin clicks a link and he realizes what he has access to. He's got a few hours to work in, just enough time to set up a bitcoin scam for a few top users but not to really do anything more. Although it may have been possible to grab a dump of DMs from the accounts, I have no twitter account and have no idea how this would work.

Anyone who has twitter, say someone has access and wants to grab all your of DMs, is there a download all option or would you need some external plugin ?
Click to expand...

You can download your entire Twitter archive of data including all tweets, media, and DMs. It'a a big dump though, mine was 12GB.
 
cryptoadam

cryptoadam

Banned
So is Jack gonna have to testify in front of congress?

Any world leader right now should be shaking in their boots about what happened. Biden/Trump need to be rethinking being on twitter. One tweet from Trump saying F Nwords and the entire US could burn.
 
ManaByte

ManaByte

Gold Member
cryptoadam said:
So is Jack gonna have to testify in front of congress?

Any world leader right now should be shaking in their boots about what happened. Biden/Trump need to be rethinking being on twitter. One tweet from Trump saying F Nwords and the entire US could burn.
Click to expand...

Hell, they go do a single word N-bomb Tweet from Trump and that'd be it.
 
cryptoadam

cryptoadam

Banned
Also put some buy orders on stock at really low prices.

If you watched Tim Pool you might have seen the Obama hack that tanked the stock market. Literally Dark Knight Banes plan IRL.

If they do it again you could pick up some stocks when it crashes and then ride it all the way back up to the top.
 
poppabk

poppabk

Cheeks Spread for Digital Only Future
How fucking lame. They get access to posting from all these sites and all they post is a lame Bitcoin scam. They could have made up so much fun shit with each account corroborating the other, it would have taken a long time for the truth to come out, and crafted right the correction could have been made to look like a cover-up.
If they were only interested in making money they could have crashed the stock market or at least one stock and that they shorted before hand.
 
Chittagong

Chittagong

Gold Member
poppabk said:
How fucking lame. They get access to posting from all these sites and all they post is a lame Bitcoin scam. They could have made up so much fun shit with each account corroborating the other, it would have taken a long time for the truth to come out, and crafted right the correction could have been made to look like a cover-up.
If they were only interested in making money they could have crashed the stock market or at least one stock and that they shorted before hand.
Click to expand...

“You had one chance to start WW3”
 
Starfield

Starfield

Member
Imagine WW3 happened because someone hacked an admins Twitter account and started spreading fake news on social media.

Someone in Hollywood probably already writing a script as we a speak.
 
cryptoadam

cryptoadam

Banned
poppabk said:
How fucking lame. They get access to posting from all these sites and all they post is a lame Bitcoin scam. They could have made up so much fun shit with each account corroborating the other, it would have taken a long time for the truth to come out, and crafted right the correction could have been made to look like a cover-up.
If they were only interested in making money they could have crashed the stock market or at least one stock and that they shorted before hand.
Click to expand...

And maybe thats what they want you to think while they are reading all the DMs of everyone who they had access too.
 
poppabk

poppabk

Cheeks Spread for Digital Only Future
Chittagong said:
“You had one chance to start WW3”
Click to expand...
Doesn't have to be WW3 of course, maybe just a tweet from Apple announcing Steve Jobs was today the first human being to be succesfully reanimated from cryogenic storage. Then Elon Musk tweeting how proud he was to be involved in supplying the technology that made it all possible and that he was introducing his new Tesla Life company. Obama tweeting how he was one of the few VIPs invited to witness the historic procedure. Then Steven King complaining that real life was stealing his stories. Then Biden tweeting that he would be undergoing the same reanimation procedure before the election.
 
IntentionalPun

IntentionalPun

Ask me about my wife's perfect butthole
cryptoadam said:
So is Jack gonna have to testify in front of congress?

Any world leader right now should be shaking in their boots about what happened. Biden/Trump need to be rethinking being on twitter. One tweet from Trump saying F Nwords and the entire US could burn.
Click to expand...
Have to agree..Maybe they should already have been thinking... "Perhaps we shouldn't use completely out of our control social media services as a prominent means of communication?"

Instead of "let's call the feds on the business that was hacked" lol
 
Last edited:
iconmaster

iconmaster

Banned
cryptoadam said:
Does anyone feel like this is being swept under the rug.

Is the hope we all forget that fake messages were blasted out by some of the most influential people in the world?
Click to expand...

Twitter is actually being good about providing further info as it uncovers it. It’s bad news, of course: the hackers got the DMs for 8 of the compromised accounts.



Edit: they later clarify the 8 accounts were not verified accounts, so we’re probably not looking at Joe Biden’s DMs ending up on Pastebin. Probably.
 
Last edited:
cryptoadam

cryptoadam

Banned
ManaByte

ManaByte

Gold Member
S

slugbahr

Unconfirmed Member
Remember the days when all that Sony stuff was being leaked.
Fun times!
 
ManaByte

ManaByte

Gold Member
blog.twitter.com

An update on our security incident

An update on our security incident and what we know so far.
blog.twitter.com blog.twitter.com

The social engineering that occurred on July 15, 2020, targeted a small number of employees through a phone spear phishing attack. A successful attack required the attackers to obtain access to both our internal network as well as specific employee credentials that granted them access to our internal support tools. Not all of the employees that were initially targeted had permissions to use account management tools, but the attackers used their credentials to access our internal systems and gain information about our processes. This knowledge then enabled them to target additional employees who did have access to our account support tools. Using the credentials of employees with access to these tools, the attackers targeted 130 Twitter accounts, ultimately Tweeting from 45, accessing the DM inbox of 36, and downloading the Twitter Data of 7.
Click to expand...
 
iconmaster

iconmaster

Banned
cryptoadam

cryptoadam

Banned
China/Iran/NK are rolling with laughter right now.

Jack you got beaten by a 17 year old. I hope he feels the shame of a thousand men who just finished beating it.
 
Stilton Disco

Stilton Disco

Member
DragoonKain said:
A teenager was behind this apparently

www.wfla.com

Tampa teen accused of being ‘mastermind’ behind Twitter hack that targeted high-profile accounts

A Tampa teenager is in jail, accused of being the “mastermind” behind a hack on the social media website Twitter that caused limited access to the site and high-profile accounts, accord…
www.wfla.com www.wfla.com
Click to expand...
That's actually even more terrifying. If a fucking 17 year old could single handedly access all this shit that could have caused fuck knows how many deaths and what kind of destruction, then what actual cyberwarfare tactics might be employed at a moments notice are that much more terrifying to contemplate and easy to implement.
 
iconmaster

iconmaster

Banned
Stilton Disco said:
That's actually even more terrifying. If a fucking 17 year old could single handedly access all this shit that could have caused fuck knows how many deaths and what kind of destruction, then what actual cyberwarfare tactics might be employed at a moments notice are that much more terrifying to contemplate and easy to implement.
Click to expand...

Of course. For a well-funded team of state actors, this and much more would be trivial.
 
You must log in or register to reply here.

Similar threads

  • Locked
Elon Musk vs Brazil’s Federal Supreme Court
Social Opinion News
12
1K
AJUMP23 replied
Twitter is Officially Dying: Elon Musk sets new daily Twitter limits for users
Social News Drama 2 3
139
9K
Vicetrailia replied
  • Locked
Twitter shareholders vote overwhelmingly in favor of Elon Musk's $44 billion takeover deal
News
10
1K
///PATRIOT replied
[CNN Business] Elon Musk is worth more than twice Warren Buffett and has $100 billion on Jeff Bezos
2
62
4K
Torrent of Pork replied
Teenager arrested as the mastermind behind the Twitter Bitcoin hack [G/A/F]
23
1K
Mistake replied
Top Bottom