Hackers used social engineering to target some of Twitter’s employees and then gained access to the high-profile accounts, in a July 16, 2020 story. (Photo by THE ASSOCIATED PRESS)

Experts say Twitter breach troubling, undermines trust

Twitter swiftly locked down accounts to investigate

HONG KONG — A breach in Twitter’s security that allowed hackers to break into the accounts of leaders and technology moguls is one of the worst attacks in recent years and may shake trust in a platform politicians and CEOs use to communicate with the public, experts said Thursday.

The ruse discovered Wednesday included bogus tweets from Barack Obama, Joe Biden, Mike Bloomberg and a number of tech billionaires including Amazon CEO Jeff Bezos, Microsoft co-founder Bill Gates and Tesla CEO Elon Musk. Celebrities Kanye West and his wife, Kim Kardashian West, were also hacked.

Hackers used social engineering to target some of Twitter’s employees and then gained access to the high-profile accounts. The attackers sent out tweets from the accounts of the public figures, offering to send $2,000 for every $1,000 sent to an anonymous Bitcoin address.

Cybersecurity experts say such a breach could have dire consequences since the attackers were tweeting from verified, globally influential accounts with millions of followers.

“If you receive a tweet from a verified account, belonging to a well-known and therefore trusted person, you can no longer assume it’s really from them,” said Michael Gazeley, managing director of cybersecurity firm Network Box.

Reacting to the breach, Twitter swiftly deleted the tweets and locked down the accounts to investigate. In the process it prevented verified users from sending out tweets for several hours.

The company said Thursday it has taken “significant steps to limit access to internal systems and tools.”

Many celebrities, politicians and business leaders often use Twitter as a public platform to make statements. U.S. President Donald Trump, for example, regularly uses Twitter to post about national and geopolitical matters, and his account is closely followed by media, analysts and governments around the world.

Twitter faces an uphill battle in regaining people’s confidence, Gazeley said. For a start, it needs to figure out exactly the accounts were hacked and show the vulnerabilities have been fixed, he said.

“If key employees at Twitter were tricked, that’s actually a serious cybersecurity problem in itself,” he said. “How can one of the world’s most used social media platforms have such weak security, from a human perspective?”

Rachel Tobac, CEO of Socialproof Security, said that the breach appeared to be largely financially motivated. But such an attack could cause more serious consequences.

“Can you imagine if they had taken over a world leader’s account, and tweeted out a threat of violence to another country’s leader?” asked Tobac, a social engineering hacker who specializes in providing training for companies to protect themselves from such breaches.

Social engineering attacks typically target human weaknesses to exploit networks and online platforms. Companies can guard themselves against such attacks by beefing up multi-factor authentication -– where users have to present multiple pieces of evidence as authentication before being allowed to log into a system, Tobac said.

Such a process could include having a physical token that an employee must have with them, on top of a password, before they can log into a corporate or other private system. Other methods include installing technical tools to monitor for suspicious insider activities and reducing the number of people who have access to an administrative panel, Tobac said.

U.S. Sen. Josh Hawley called on Twitter to co-operate with authorities including the Department of Justice and the FBI to secure the site.

“I am concerned that this event may represent not merely a co-ordinated set of separate hacking incidents but rather a successful attack on the security of Twitter itself,” he said.

He added that millions of users relied on Twitter not just to send tweets but also communicate privately via direct messaging.

“A successful attack on your system’s servers represents a threat to all of your users’ privacy and data security,” said Hawley.

By The Associated Press

Business

Get local stories you won't find anywhere else right to your inbox.
Sign up here

Just Posted

robbery
UPDATE: Suspect identified in early morning shooting

Rimbey RCMP had responded to a complaint of an armed robbery at the Bluffton City General Store

Alberta chief medical officer of health Dr. Deena Hinshaw updates media on the Covid-19 situation in Edmonton on Friday March 20, 2020. nbsp;Alberta is reporting it's highest daily number of COVID-19 cases, with 364 new infections. THE CANADIAN PRESS/Jason Franson
Alberta confirmed 323 COVID-19 cases Tuesday

Central zone active cases at 145

Health Minister Tyler Shandro and Dr. Deena Hinshaw, the chief medical officer of health, receive flu shot. Photo via Government of Alberta
COVID-19: One more death in central zone

Ponoka County on province’s watchlist

Many rural municipalities were concerned about a proposed reduction to their industrial revenues, but Alberta’s Municipal Affairs minister has come up with an alternative solution. (Photo contributed)
Province and rural municipalities agree on a plan to support Alberta’s energy industry

Creating new wells or pipelines would result in a three year ‘tax holiday’

The influenza vaccine will be available at no cost starting Monday in Alberta. “The more that we can avoid influenza-related tests, emergency visits and hospitalizations, the stronger our system will be to support those with COVID-19 and all other health needs," says Dr. Deena Hinshaw, the province's chief medical officer of health. (AP Photo/Ted S. Warren)
Hinshaw urges Albertans to get flu shot as COVID cases jump by 332

Alberta’s central zone now has 132 active COVID-19 cases

Conservative member of Parliament Pierre Poilievre speaks during a press conference on Parliament Hill in Ottawa on October 19, 2020. THE CANADIAN PRESS/Sean Kilpatrick
Liberals say Tory effort to set up COVID-19 committee will be a confidence matter

The Tories were originally proposing an ‘anticorruption’ committee

(The Canadian Press)
Alberta-raised Cree actor lands role in Disney’s live-action ‘Peter Pan and Wendy’

Tiger Lily is featured in Disney’s 1953 animated “Peter Pan” film

Natural Resources Minister Seamus O’Regan responds to a question during Question Period in the House of Commons Tuesday February 4, 2020 in Ottawa. The Alberta government is welcoming news that Ottawa has approved an expansion of the Nova Gas Transmission Ltd. gathering system in Alberta — while condemning federal delays that it says cost this summer’s construction season. THE CANADIAN PRESS/Adrian Wyld
Alberta welcomes federal approval of gas pipeline expansion while criticizing delay

Pipeline division owned by Calgary-based TC Energy Corp. will now be required to restore 3,840 hectares of caribou habitat,

This 2020 electron microscope image made available by the National Institute of Allergy and Infectious Diseases shows a Novel Coronavirus SARS-CoV-2 particle isolated from a patient, in a laboratory in Fort Detrick, Md. THE CANADIAN PRESS/AP-NIAID/NIH via AP
At least 49 cases of COVID-19 linked to wedding in Calgary: Alberta Health

McMillan says the city of Calgary has recently seen several outbreaks linked to social gatherings

Alberta Premier Jason Kenny and government house leader Jason Nixon chat before the speech from the throne delivered in Edmonton, Alta., on Tuesday, May 21, 2019. Alberta politicians are to return to the legislature Tuesday with a plan to discuss up to 20 new bills — many of which are focused on the province’s economic recovery. THE CANADIAN PRESS/Jason Franson
Alberta legislature to resume Tuesday; focus to be on economic recovery

Opposition house leader Heather Sweet said the NDP will focus on holding Premier Jason Kenney

A passer-by walks past a COVID-19 testing clinic in Montreal, Friday, Oct. 16, 2020. THE CANADIAN PRESS/Ryan Remiorz
Canada ‘yet to see’ deaths due to recent COVID surge as cases hit 200,000

Much of the increase in case numbers can be attributed to Ontario and Quebec

Executive Director of Agape Kate Halas (left) receives $1000 from Sgt. Eric Christensen (right) on behalf of Agape. Photo/ Shaela Dansereau.
Former Wetaskiwin Peace Officer wins provincial award; gives back to Wetaskiwin community

Eric Christensen has won the Alberta Association of Community Peace Officers Award of Excellence.

Agriculture Minister Devin Dreeshen (Alberta government photo)
Big boost for Alberta college agriculture research

The $2-million agreement to benefit Lethbridge College’s applied research team

Grant and Barbara Howse, in quarantine in Invermere. Mike Turner photo
Denied entry into U.S., Canadian couple still forced to quarantine for 2 weeks

The rules around crossing the U.S. border led to a bizarre situation for an Invermere couple

Most Read