Hacker Puts Data Of 5.4 Million Twitter Users On Sale For $30K
-
A Twitter vulnerability discovered in January 2022 allowed a threat actor to gain access to a database containing phone numbers and email addresses belonging to 5.4 million Twitter account users, as first reported by RestorePrivacy.
While the Twitter vulnerability had been patched, the attacker known as ‘devil’ is now selling the database allegedly acquired from this exploit on Breached Forums, a popular hacking forum, for $30,000. The database contains information about several accounts, including celebrities, companies, and random users.
“Hello, today I present you data collected on multiple users who use Twitter via a vulnerability. (5485636 users to be exact),” reads the forums post selling the Twitter data. “These users range from Celebrities, to Companies, randoms, OGs, etc.”
Full article https://www.techworm.net/2022/07/hacker-million-twitter-users-sale.html
(How many times has this already happened in the past, on Twitter, as well as on FB and Google?)
-
@Catweazle I remember back in the day the general security/privacy advice was to NOT put your personal information on websites. Now sites want/require you too.
-
@Catweazle $30K? Why such a low price? Wouldn't data like that be worth far more than $30K to intelligence agencies, cybercriminal gangs, etc.?
-
@MidnightRaccoon What sites require your personal information?
-
@Eggcorn ,try to make a account in Twitter nowaday, you can create an account with Apple or Google or with a Telephon number, mail, your real name, all data which make you personally identificable. Same in FB or in Google itself, some years ago, my wife had a FB account, until one day she recived a Pop-up from FB, if she want to continue to post, she need to identify by telephon or Creditcard.
In Google, if there is a video with age restriction, you need a ID Card to identify you.
Do you know now why I recommend sending them to comb the desert?
I understand that in an online purchase you need a delivery address and some payment method, although it can be PayPal or cash on delivery, but a social network should matter at all, more than the Nick and eventually an email to recover the password, just like in this forum, no more.Also a nice article, why is better to avoid these sites.
https://www.mintpressnews.com/meet-ex-cia-agents-deciding-facebook-content-policy/281307/ -
@Catweazle Thank you for the good articles.
-
"A criminal has exploited a security hole in Twitter and obtained numerous data from almost 5.5 million Twitter accounts. He is now offering them for sale in a relevant forum.
"Breached Forums" confirmed the authenticity of the data.RestorePrivacy examined a 'sample': it contains, among other things, user and plain names, as well as phone numbers and email addresses of Twitter users worldwide, which are not actually public."
Anonymous Germany