Tuesday, December 13, 2022
HomeLaptopTwitter admits 2022 knowledge leaks exploit similar vulnerability — how one can...

Twitter admits 2022 knowledge leaks exploit similar vulnerability — how one can keep secure


Twitter at this time confirmed that the consumer knowledge breach that leaked thousands and thousands of customers’ profiles, resembling emails and cellphone numbers, in November used the identical vulnerability in July 2022’s leak.

In a safety replace from Twitter, the submit particulars the earlier July 2022 knowledge breach together with the latest November 2022 leak of customers’ knowledge. Twitter’s Incident Response Workforce in contrast the info reported by the media on July 21, 2022, with the November breach, and got here to the conclusion that “the comparability decided that the uncovered knowledge was the identical in each instances.”

As Twitter confirmed in August 2022, a Twitter vulnerability led to a hacker acquiring account knowledge of 5.4 million customers, and the stolen data, which claimed to incorporate e mail and cellphone numbers, went up on the market for no less than $30,000. Twitter acknowledged this bug as a “legitimate safety subject” again in January 2022, awarding consumer zhirinovskiy with a $5,040 bounty for locating it, and has since been patched.

Submit of Twitter Hacker promoting knowledge (by way of Restore Privateness) (Picture credit score: Restore Privateness)

Nevertheless, the menace actor, often known as “satan,” apparently used this exploit to promote thousands and thousands of customers’ knowledge, which is alleged to “vary from Celebrities, to Firms, randoms, OGs, and so forth.”

As reported by BleepingComputer, In November 2022, one other hacker launched a JSON file that contained the 5.4 million information. Nevertheless, one other researcher noticed a brand new set of Twitter profiles that had been scrapped utilizing the identical vulnerability, which wasn’t the identical because the 5.4 million in July 2022. Apparently, the info set contained 17 million consumer profiles.

“In November 2022, some press studies printed that Twitter customers’ knowledge had been allegedly leaked on-line,” Twitter’s safety replace states. “As quickly as we turned conscious of the information, Twitter’s Incident Response Workforce in contrast the info within the new report back to knowledge reported by the media on 21 July 2022. The comparability decided that the uncovered knowledge was the identical in each instances.”

The cybersecurity information website sampled an information set containing 1.4 million accounts and even contacted Twitter customers to verify if the leaked cellphone numbers had been legitimate. Sadly, there are. This implies the exploit noticed in January 2022 continues to be seeing its results, and Twitter hasn’t confirmed the variety of uncovered customers from the breach. 

Begin utilizing two-factor authentication



RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -
Google search engine

Most Popular

Recent Comments