Accounts of Biden, Musk and other prominent figures hacked
The Twitter accounts of major public figures and corporations, including Joe Biden, Barack Obama, Elon Musk, Bill Gates, Jeff Bezos and Apple appear to have been hacked as part of a bitcoin scam.
Twitter said it was looking into the situation.
The apparently compromised accounts, which count tens of millions of followers, sent a series of tweets proposing a classic scam: followers were told that if they transferred cryptocurrency to a specific bitcoin wallet, they would receive double the money in return.
The messages included the address of a bitcoin wallet whose balance grew rapidly to more than 11 BTC (more than $100,000) as the scam spread. Tweets with similar messages were repeatedly deleted and re-posted by some of the compromised accounts over the course of Wednesday afternoon.
While the motives and source of the attack are not yet known, the coordinated hijacking of the verified communications streams of world leaders, celebrities and major corporate accounts was a frightening prospect. Twitter has become a de facto wire service for the world and is used for official communications by governments during emergencies; a hack on the scale of Wednesday’s attack could have been more disruptive or even dangerous.
“The amount of damage this could cause is very high,” said Douglas Schmidt, a computer science professor at Vanderbilt University. “These people could hold information gleaned from the hack for ransom in the future.”
Twitter issued a statement approximately 90 minutes after scam messages began being sent out by Musk’s and Gates’ accounts, as the attack was ongoing.
“We are aware of a security incident impacting accounts on Twitter,” the company said on Twitter. “We are investigating and taking steps to fix it. We will update everyone shortly.”
The company subsequently warned that some users would be unable to tweet or change their passwords as it worked to address the issue. The company appeared to be blocking verified users, whose accounts feature a blue checkmark to denote that Twitter has confirmed their identities, from tweeting.
Twitter’s stock price tumbled more than 3% in after hours trading.
The hack likely targeted a vulnerability on Twitter’s end rather than by the individual account holders, said John Ozbay, the chief executive of privacy and security tool Cryptee. Most high-profile users likely engage two-factor authentication, Ozbay said, and the hackers appeared to have enough control over the compromised accounts to “pin” a tweet. That would not have been possible if a hacked account were being controlled by SMS, as occurred when the Twitter CEO Jack Dorsey’s own account was hijacked in 2019.
Schmidt said that the attacks could be related to the fact that Twitter, like much of the rest of the tech industry, has transitioned to remote work during the coronavirus pandemic.
“The likelihood of attacks like this increase when people are working remotely it is much easier for bad actors to impersonate someone through an email and gain access to their accounts,” said Schmidt. “Assuming this wasn’t someone inside Twitter trying to take revenge, it appears to be a spear phishing attack – someone who has access to admin privileges that can override two-factor authentication and strong passwords fell victim to a hack”.
The US justice department’s internal watchdog launched an investigation on Friday after revelations that former president Donald Trump’s administration secretly seized phone data from at least two House Democrats as part of an aggressive leaks inquiry related to the Russia investigation into Trump’s conduct.
Donald Trump called Joe Biden a “mental retard” during the 2020 election, a new book says, but was reluctant to attack him too strongly for fear the Democrats would replace him with Hillary Clinton or Michelle Obama. Biden went on to beat Trump by more than 7m in the popular vote and by 306-232 in the electoral college, a result Trump deemed a landslide when it was in his favor against Clinton in 2016.
The deadly insurrection at the US Capitol was “planned in plain sight” but intelligence failures left police officers exposed to a violent mob of Trump supporters, a Senate investigation has found. The Capitol police intelligence division had been gathering online data since December about plots to storm the building on 6 January, including messages such as: “Bring guns. It’s now or never.” But a combination of bad communications, poor planning, faulty equipment and lack of leadership meant the warnings went unheeded, allowing the insurrectionists to overrun the Capitol and disrupt certification of Joe Biden’s election victory. Five people died.
For over a year, Anthony Fauci has been a bogeyman for conservatives, who have questioned his handling of the Covid-19 pandemic and accused him of quietly undermining then-President Donald Trump. But those attacks took on a whole new level of vitriol this week, to the point that one social media analysis described it as highly misleading and at least one platform pulled down some posts, citing false content. It all stemmed from a tranche of Fauci’s emails that were published as part of a Freedom of Information Act request filed by various news outlets. Within hours of publication, the hashtag #FauciLeaks was trending on Twitter.