A massive hacked Twitter scandal resurfaced the internet and the culprit might just be from the company.
Hackers have hacked several verified high profiles Twitter accounts on Wednesday in a cryptocurrency scam that targeted accounts belonging to Amazon CEO Jeff Bezos, Tesla CEO Elon Musk, Microsoft CEO Bill Gates, and many more.
Twitter has stated it doesn’t believe that the hackers stole any passwords in the hack, which forced them to lock all verified accounts on the platform temporarily. While the company is still investigating, a recent report suggests at least one Twitter employee, and it involved possibly more who are part of the hacking.
Based on the reports from Vice and Motherboard, they were able to speak to two of the alleged hackers, who claimed that they asked and paid a Twitter employee to gain access using an internal tool. This internal tool is said to be to have access to changing the email address associated with accounts. Thus, leading to the security breach to take place.
On Thursday, Twitter said that a “coordinated social engineering attack” had targeted some of its staff as part of the hack.
Hackers used the verified twitter account and tweeted stating that if followers sent Bitcoin to a wallet address, then they would receive double the amount in return. Many twitter users fell for the scam that giving the hackers a $100,000 in two hours span.
Twitter believes the attackers targeted approximately 130 accounts as part of the incident, but the company could not confirm whether it compromised DMs of the platform. Accessing the
“Out of an abundance of caution, and as part of our incident response yesterday to protect people’s security, we took the step to lock any accounts that had attempted to change the account’s password during the past 30 days,” Twitter said.
“As part of the additional security measures we’ve taken, you may not have been able to reset your password. Other than the accounts that are still locked, people should be able to reset their password now, “they added.
Twitter also mentioned “working to help people regain access to their accounts” following the incident. And as of today, many high-profile accounts were still locked out from their accounts.
When Tech Crunch asked Twitter several questions about direct messages, including whether the hackers gained access to users’ DMs and what protections it puts in place to prevent unauthorized access in the future, including from their employees, TechCrunch wasn’t able to get an answer from Twitter.