World

Twitter Breach Exposed Data Of 5.4 Million Users; Attackers May Still Have Data

By
OB Bureau

New Delhi: Micro-blogging site Twitter has said that the exploit that was used to obtain information from 5.4 million users on the platform has now been confirmed and fixed. However, while Twitter has confirmed the attack, it still leaves the data of 5.4 million Twitter users exposed and in the hands of a malicious attacker.

The zero-day attack took place in December 2021 and was reported last month.

The attacker said last month that he has data of about 5,485,636 accounts with information like location, URL, profile picture, and other data. The attacker allegedly used a vulnerability that allowed anyone to query a phone number or email to check an active Twitter account and obtain their information, News18 reported.

According to the Bleeping Computer, which first reported on the attack, the data was last being sold for $30,000, but the attacker had also said that the data could end up being released for free, putting millions of users at risk publicly. Twitter said it learned about the bug in January this year through its bug bounty programme. While the issue was fixed earlier this year, Twitter said that it didn’t account for the likelihood of the attacker already being in possession of the data, the report added.

According to an Android Police report, Twitter has said that it is notifying each user, but the company has admitted that it cannot confirm every account that was exposed due to this issue. While passwords were not a part of the compromised data, Twitter is advising users to turn on two-factor authentication for their accounts. Given that the phone number is the key threat vector, users are advised to go for either an authentication app or a hardware key, both of which can be set up with Twitter’s mobile app, the report said.

OB Bureau

Recent Posts

Rs 7.3 Lakh Looted From GSK Employee In Broad Daylight In Odisha’s Balangir

Balangir: In a daring act, unidentified miscreants allegedly looted Rs 7.3 lakh cash from a…

November 8, 2024

Don’t Give Into Blackmailing, Immediately Report To Police: Cuttack DCP

Cuttack: Following the alleged gangrape of a college girl, Cuttack DCP Jagmohan Meena on Friday…

November 8, 2024

Elon Musk’s Estranged Daughter Wants To Leave US; Here’s Why?

New Delhi: Vivian Jenna Wilson, the transgender daughter of Elon Musk, says she is leaving…

November 8, 2024

Fact Check: ‘Secret Memo’ Links Indian Diplomats With Violent Crimes In West?

New Delhi: The Ministry of External Affairs on Friday stated that a ‘secret memo’ that…

November 8, 2024

Law Minister Assures ‘Crime-Free Odisha For Women’ By 2036 Amid Outrage Over Cuttack Gangrape

Bhubaneswar/Cuttack: Amid statewide outrage over alleged gang-rape of a girl college student in Odisha's Cuttack…

November 8, 2024

CID To Investigate Case Of ‘Missing Samosas’ Meant For Himachal CM? Where Did They Vanish?

New Delhi: A controversy has erupted in Himachal Pradesh over samosas that went missing from…

November 8, 2024

IT Engineer Held For Raping Colleague On False Promise Of Marriage In Bhubaneswar

Bhubaneswar: An IT engineer was arrested by the Commissionerate Police on Friday on charges of…

November 8, 2024

In-Charge Medical Officer & Pharmacist Caught Taking Rs 40K Bribe From Nursing Officer In Odisha

Bhubaneswar: The Odisha Vigilance sleuths on Friday apprehended medical officer in-charge of Boipariguda Community Health…

November 8, 2024