Feeds

Twitter breach gives behind-the-scenes Obama peek

Wanted: Security engineer

  • alert
  • submit to reddit

Intelligent flash storage arrays

Twitter still hasn't come clean, but it appears yet another administrative account on the micro-blogging site has been breached, giving world+dog an inside peek at the accounts of Barack Obama, Ashton Kutcher, and other celebrities.

Screenshots posted on French blog Korben show more than a dozen images purporting to be taken by a hacker who gained inside access to Twitter. They provide a behind-the-scenes glimpse into the account activities of some of the most exclusive Twitterati.

Actor Ashton Kutcher and pop star Lily Rose Allen, for instance, have both blocked celebrity gossip monger Perez Hilton from sending them messages. Barack Obama has blocked 96 Twitter users, including one named rachel_wanggg. Plenty of other administrator-only pages turned up as well, including blacklisted users and dashboards containing configuration settings.

Twitter representatives didn't respond to an email requesting comment. Twitter's blog, which in the past has been used to communicate security issues, was also silent on the matter.

If legit, it would be at least the second time a Twitter admin's account has been breached. In January, as Wired.com's Kim Zetter reported, the accounts of Britney Spears, Barack Obama, and others were tampered with after a hacker used off-the-shelf software to guess an admin's password was "happiness."

The screenshots attempt to shield most sensitive information, including IP and email addresses of those concerned. They also blurred the name of the Twitter admin whose account was supposedly breached, but a simple search suggests it belonged to Twitter employee Jason Goldman.

Twitter has also been on the receiving end of several powerful, self-replicating worm attacks that force users to post comments simply by clicking on a link while logged in to their accounts.

The site, by the way, recently posted online ads looking for software engineers who specialize in application and infrastructure security. We wish them well with that. ®

Internet Security Threat Report 2014

More from The Register

next story
Knock Knock tool makes a joke of Mac AV
Yes, we know Macs 'don't get viruses', but when they do this code'll spot 'em
Feds seek potential 'second Snowden' gov doc leaker – report
Hang on, Ed wasn't here when we compiled THIS document
Why weasel words might not work for Whisper
CEO suspends editor but privacy questions remain
DEATH by PowerPoint: Microsoft warns of 0-day attack hidden in slides
Might put out patch in update, might chuck it out sooner
BlackEnergy crimeware coursing through US control systems
US CERT says three flavours of control kit are under attack
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
Simplify SSL certificate management across the enterprise
Simple steps to take control of SSL across the enterprise, and recommendations for a management platform for full visibility and single-point of control for these Certificates.