Twitter Faces a “Credible Threat” From Hacker as Data From 400M Accounts Is Put Up for Sale: Reports

The Twitter hacker claimed to have details of top profiles, like the official account of the World Health Organization, Vitalik Buterin, Donald Trump Jnr, and Mark Cuban.

A black silhouette of Twitter logo on yellow background
  • A hacker has put up 400 million Twitter users’ data for sale on the dark web, including phone numbers and email addresses.
  • Furthermore, the hacker claimed access to top profiles such as the WHO, Vitalik Buterin, and Salman Khan.
  • The hacker wants Elon Musk, CEO of Twitter, to pay $276 million to avoid losing the data.
  • According to reports, the stolen data originated from Twitter’s “Zero-Day Hack,” which took place in June 2021.

According to emerging reports, a hacker has put up 400 million Twitter users’ data for sale on the dark web. As revealed, the data contain details such as phone numbers, usernames, creation dates, and emails of some top accounts on the microblogging app.

The hacker claimed to have details of top profiles on the platform. These include the official account of the World Health Organization, Vitalik Buterin, Donald Trump Jnr, Mark Cuban, Salman Khan, and Charlie Puth. 

Sponsored

In a recent post, cybersecurity intelligence company Hudson Rock provided more details about the hacker’s claims.

To back his claims, the exploiter posted data samples on groups belonging to hackers. Further, Alon Gal, CEO of Hudson Rock, has recently stated that the data shared by the hacker “is increasingly more likely to be valid.”

“The data is increasingly more likely to be valid and was probably obtained from an API vulnerability enabling the threat actor to query any email/phone and retrieve a Twitter profile, this is extremely similar to the Facebook 533m database that I originally reported about in 2021 and resulted in a $275,000,000 fine to Meta,” Alon Gal said.

The hacker calls on the CEO of Twitter, Elon Musk, to pay $276 million to avoid sending the data into the wrong hands.

In addition, the hacker urged the CEO to pay the ransom and avoid a fine from the General Data Protection Regulation agency (GDPR). The hacker also promised to delete the stolen data if Musk paid the ransom.

Meanwhile, reports indicated that the hacker got the data due to some vulnerability on Twitter. The stolen data, according to reports, emanated from the “Zero-Day Hack” on Twitter. 

Sponsored

In June 2021, hackers exploited an application programming interface bug, aiding them in extracting the data from Twitter’s database. The microblogging app already mended the lapses early this year before the news about the Elon Musk takeover deal surfaced.

On the Flipside

  • This is not the first time news about Twitter data breaches has surfaced in recent months. The Bleeping Computer website reported on Nov. 27 that two other databases with 5.5 million and 17 million users were also identified to exploit sensitive data.

Why You Should Care

  • Eventually, if the claims of the hacker are valid, the lapses pose a major concern for the crypto community. Firstly, the details of project developers, figures, and traders who operate under pseudonyms are under threat.
  • Followers of the affected contacts will become exposed to illicit content that might defraud them of their money. The affected users themselves are exposed to phishing, crypto scams, sim swapping, and doxxing. 
  • Twitter might suffer immeasurable damages. Aside from a possible fine and lawsuit from the GDPR, users will lose trust in the confidentiality of Twitter, prompting them to seek alternatives. 

 

You may also like:

Twitter Launches Stocks, ETF, Bitcoin (BTC), and Ethereum (ETH) Price Charts, More Features Coming?

Amid Twitter Chaos, Web3 Firm Acquires Mastodon Instance Pawoo.net

This article is for information purposes only and should not be considered trading or investment advice. Nothing herein shall be construed as financial, legal, or tax advice. Trading forex, cryptocurrencies, and CFDs pose a considerable risk of loss.

Author
Soumen Datta

Soumen has been a dedicated researcher and writer in the field of cryptocurrencies for the last few years. Even though Indian crypto regulations are still unclear, he believes that India will continue to innovate in the years to come. He loves to play his guitar and sing along in his spare time. He holds bags mostly in BTC, ETH, BNB, MATIC, ADA.