mcloudyn.png
Friday August 19th, 2022 5:09AM

Twitter breach exposed anonymous account owners

By The Associated Press
Related Articles
  Contact Editor

A vulnerability in Twitter's software that exposed an undetermined number of owners of anonymous accounts to potential identity compromise last year was apparently exploited by a malicious actor, the social media company said Friday.

It did not confirm a report that data on 5.4 million users was offered for sale online as a result but said users worldwide were affected.

The breach is especially worrisome because many Twitter account owners, including human rights activists, do not disclose their identities in their profiles for security reasons that include fear of persecution by repressive authorities.

“This is very bad for many who use pseudonymous Twitter accounts," U.S. Naval Academy data security expert Jeff Kosseff tweeted.

The vulnerability allowed someone to determine during log-in whether a particular phone number or email address was tied to an existing Twitter account, thereby revealing account owners, the company said.

Twitter said it did not know how many users may have been affected, and stressed that no passwords were exposed.

“We can confirm the impact was global,” a Twitter spokesperson said via email. “We cannot determine exactly how many accounts were impacted or the location of the account holders."

Twitter's acknowledgment in a blog post Friday followed a report last month by t he digital privacy advocacy group Restore Privacy detailing how data presumably obtained from the vulnerability was being sold on a popular hacking forum for $30,000.

A security researcher discovered the flaw in January, informed Twitter and was paid a reported $5,000 bounty. Twitter said the bug, introduced in a June 2021 software update, was immediately fixed.

Twitter said it learned about the data sale on the hacking forum from media reports and “confirmed that a bad actor had taken advantage of the issue before it was addressed.”

It said it was directly notifying all account owners that it can confirm were affected.

“We are publishing this update because we aren’t able to confirm every account that was potentially impacted, and are particularly mindful of people with pseudonymous accounts who can be targeted by state or other actors,” the company said.

It recommended users seeking to keep their identities veiled not add a publicly known phone number or email address to their Twitter account.

“If you operate a pseudonymous Twitter account, we understand the risks an incident like this can introduce and deeply regret that this happened,” it said.

The revelation of the breach comes while Twitter is in a legal battle with Tesla CEO Elon Musk over his attempt to back out from his previous offer to buy San Francisco-based Twitter for $44 billion.

  • Associated Categories: Associated Press (AP), AP Business, AP Technology News
© Copyright 2022 AccessWDUN.com
All rights reserved. This material may not be published, broadcast, rewritten, or redistributed without permission.
Alex Jones ordered to pay $49.3M total over Sandy Hook lies
A Texas jury has ordered conspiracy theorist Alex Jones to pay $49.3 million in total damages to the parents of a first-grader killed in the 2012 Sandy Hook Elementary School massacre
5:56PM ( 15 minutes ago )
Breonna Taylor supporters relieved by charges against police
Louisville activists who put in long hours protesting the death of Breonna Taylor at the hands of police say they felt relief this week when federal officials charged four officers
5:50PM ( 21 minutes ago )
7 adults, 3 kids dead in house fire; criminal probe underway
Authorities say a fast-moving fire killed seven adults and three children in northeastern Pennsylvania
5:33PM ( 38 minutes ago )
Associated Press (AP)
Wall Street falls as jobs data suggests Fed hikes not over
Stocks are closing mostly lower Friday after new data on the hot U.S. jobs market suggested the Fed won’t soon rein in its aggressive rate hikes
4:50PM ( 1 hour ago )
China cuts off vital US contacts over Pelosi Taiwan visit
China says it is cutting off dialogue with the U.S. on a range of vital issues from climate change to military relations and anti-narcotics efforts in retaliation for a visit this week to Taiwan by U.S. House Speaker Nancy Pelosi
4:41PM ( 1 hour ago )
'What recession?': US employers add 528,000 jobs in July
U.S. employers added an astonishing 528,000 jobs last month despite flashing warning signs of an economic downturn, easing fears of a recession and handing President Joe Biden some good news heading into the midterm elections
4:26PM ( 1 hour ago )
AP Business
Alex Jones ordered to pay $49.3M total over Sandy Hook lies
A Texas jury has ordered conspiracy theorist Alex Jones to pay $49.3 million in total damages to the parents of a first-grader killed in the 2012 Sandy Hook Elementary School massacre
5:56PM ( 15 minutes ago )
Breonna Taylor supporters relieved by charges against police
Louisville activists who put in long hours protesting the death of Breonna Taylor at the hands of police say they felt relief this week when federal officials charged four officers
5:50PM ( 21 minutes ago )
7 adults, 3 kids dead in house fire; criminal probe underway
Authorities say a fast-moving fire killed seven adults and three children in northeastern Pennsylvania
5:33PM ( 38 minutes ago )
Man held in killing at Vegas Strip resort has prison history
Records show a 54-year-old man jailed in the killing of one person and wounding of two others during a family argument in a Las Vegas Strip hotel room has felony convictions dating to 1987 and served several years in Nevada state prisons
5:22PM ( 50 minutes ago )
Israeli strikes on Gaza kill 10, including senior militant
Israel unleashed a wave of airstrikes on Gaza, killing at least 10 people, including a senior militant
5:20PM ( 51 minutes ago )