Twitter has disclosed that spear-phishing attack caused the huge bitcoin scam
This update was disclosed by Twitter who said a few of its employees were targeted in a phone spear-phishing attack.
Spear-phishing is a fraudulent practice of sending emails purportedly from a trusted source or sender in order to cause targeted individuals to reveal personal information.
This could have meant that the hackers called Twitter’s employees disguising as their colleagues in order to get information.
“By obtaining employee credentials, they were able to target specific employees who had access to our account support tools. They then targeted 130 Twitter accounts – Tweeting from 45, accessing the DM inbox of 36, and downloading the Twitter Data of 7,” Twitter said.
The hackers were able to target 130 accounts, tweeted from 45 accounts, and accessed the direct messages of 36. The social networking company, however, took immediate action by limiting features and locked accounts for some users.
Although some features are back, others have been impacted. The company has however limited access to its internal tools and it is improving its methods for detecting and preventing inappropriate access to its internal systems.
“We’re accelerating several of our pre-existing security workstreams and improvements to our tools. We are also improving our methods for detecting and preventing inappropriate access to our internal systems and prioritizing security work across many of our teams,” Twitter added.
During the attack, hackers used accounts of President Barack Obama, Joe Biden, Tesla/SpaceX CEO, Elon Musk, Co-founder Microsoft, Bill Gates amongst. The FBI launched an investigation into the attack.