Recently, hackers have targeted one of the most used social media applications ‘Twitter’ for an unexpected Bitcoin Scam. Twitter has shed some light on how this unexpected hack happened and it is speculated that Hackers compromised high-profile accounts thanks to access to internal ‘admin’ tools.
The sudden hack resulted in numerous takeovers of high-profile accounts. Those high-profile accounts include those of President Barack Obama, Elon Musk, Joe Biden. The tweets posted from the hacked high-profile accounts were all the same. The tweet explained how they will double the amount of money if you send the money to the provided Bitcoin address. For people who are on the internet for a while and who have the knowledge of how a scam works, they were taking immediate actions to aware people who don’t have the knowledge of the scam.
Though Twitter deleted the Bitcoin scam posts, still, many people fell victim to the scam. Twitter later confirmed that the hack could not have been conducted without access to the company’s own tools and employee privileges. “We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal system and tools,” Twitter explained in the first tweet in a multi-tweet explainer thread reads. “We know they used this access to take control of many highly-visible (including verified) accounts and Tweet on their behalf.” There may be numerous people involved in the hacks, not just one individual. Twitter employees were highly compromised, too.
Speculations and investigations
Though Twitter denied revealing the tools or how exactly the hackers carried out the attack, Motherboard reported that various underground and private hacking groups are found to have been sharing various screenshots of the alleged ‘admin’ tools used for the attack. The tool used can supposedly reset the account password and email address which is very concerning. Motherboard has also shared some screenshots for some insights on how the tool operates.
In an extended investigation, it is also been speculated that Twitter employee(s) were involved in the attack. It is also been speculated that a twitter employee sold the information of high profile targets to hackers which are not yet confirmed. It is not clear how the attack was carried out but many user’s privacy has been compromised and for now, Twitter has suspended the hacked accounts so they can’t tweet anymore and also are looking further on how to resolve the issue.