Feeds

Twitter breach gives behind-the-scenes Obama peek

Wanted: Security engineer

  • alert
  • submit to reddit

Internet Security Threat Report 2014

Twitter still hasn't come clean, but it appears yet another administrative account on the micro-blogging site has been breached, giving world+dog an inside peek at the accounts of Barack Obama, Ashton Kutcher, and other celebrities.

Screenshots posted on French blog Korben show more than a dozen images purporting to be taken by a hacker who gained inside access to Twitter. They provide a behind-the-scenes glimpse into the account activities of some of the most exclusive Twitterati.

Actor Ashton Kutcher and pop star Lily Rose Allen, for instance, have both blocked celebrity gossip monger Perez Hilton from sending them messages. Barack Obama has blocked 96 Twitter users, including one named rachel_wanggg. Plenty of other administrator-only pages turned up as well, including blacklisted users and dashboards containing configuration settings.

Twitter representatives didn't respond to an email requesting comment. Twitter's blog, which in the past has been used to communicate security issues, was also silent on the matter.

If legit, it would be at least the second time a Twitter admin's account has been breached. In January, as Wired.com's Kim Zetter reported, the accounts of Britney Spears, Barack Obama, and others were tampered with after a hacker used off-the-shelf software to guess an admin's password was "happiness."

The screenshots attempt to shield most sensitive information, including IP and email addresses of those concerned. They also blurred the name of the Twitter admin whose account was supposedly breached, but a simple search suggests it belonged to Twitter employee Jason Goldman.

Twitter has also been on the receiving end of several powerful, self-replicating worm attacks that force users to post comments simply by clicking on a link while logged in to their accounts.

The site, by the way, recently posted online ads looking for software engineers who specialize in application and infrastructure security. We wish them well with that. ®

Intelligent flash storage arrays

More from The Register

next story
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Mozilla, EFF, Cisco back free-as-in-FREE-BEER SSL cert authority
Let’s Encrypt to give HTTPS-everywhere a boost in 2015
Meet OneRNG: a fully-open entropy generator for a paranoid age
Kiwis to seek random investors for crowd-funded randomiser
USB coding anarchy: Consider all sticks licked
Thumb drive design ruled by almighty buck
Attack reveals 81 percent of Tor users but admins call for calm
Cisco Netflow a handy tool for cheapskate attackers
prev story

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
The hidden costs of self-signed SSL certificates
Exploring the true TCO for self-signed SSL certificates, including a side-by-side comparison of a self-signed architecture versus working with a third-party SSL vendor.
New hybrid storage solutions
Tackling data challenges through emerging hybrid storage solutions that enable optimum database performance whilst managing costs and increasingly large data stores.