• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Twitter Addresses November Data Leak Claims

You are here: Home / General Cyber Security News / Twitter Addresses November Data Leak Claims
December 13, 2022

Social media firm Twitter has issued a general public statement about allegations that it was hacked before this yr.

Composing in a web site publish on Friday, the Elon Musk-owned platform claimed it figured out that an individual experienced perhaps exploited a vulnerability that Twitter reportedly found out in January and preset in June 2022.

The flaw enabled an individual submitting an email address to Twitter’s systems to discover an linked phone amount (if one particular existed) and vice versa.

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


According to the announcement, Twitter figured out of the vulnerability obtaining been exploited in July, with someone supplying to provide the data they experienced compiled.

“Following examining a sample of the offered knowledge for sale, we confirmed that a bad actor experienced taken edge of the issue in advance of it was resolved. At the time, we notified the afflicted consumers immediately,” reads the site submit.

“As before long as we turned knowledgeable of the information, Twitter’s Incident Reaction Team in comparison the knowledge in the new report to details noted by the media on 21 July 2022. The comparison determined that the exposed details was the identical in the two scenarios.”

The company also clarified that even though no passwords ended up exposed, Twitter prompted end users to enable 2-factor authentication (2FA) to shield accounts from unauthorized logins.

“We also inspire Twitter people to stay extra vigilant when acquiring any sort of communications about email, as danger actors might leverage the leaked information and facts to develop incredibly efficient phishing strategies.”

The information arrives weeks soon after numerous C-amount security and privacy executives resigned from Twitter next the Elon Musk acquisition of the social media organization.

“With all of the adjustments at Twitter around the prior number of months and fears about security at the website, the stories of person data leaks were being understandably troubling to end users, irrespective of Twitter’s makes an attempt to lessen concerns,” mentioned Melissa Bischoping, director of endpoint security research at Tanium.

“Even though the leaked details could have been the consequence of the formerly compiled information and reportedly does not incorporate passwords, consumers ought to nevertheless take into consideration this a well timed reminder to audit credential cleanliness and multi-factor authentication enforcement on all their accounts.”


Some areas of this short article are sourced from:
www.infosecurity-journal.com

Previous Post: «Cyber Security News California Hit By Cyber-Attack, LockBit Claims Responsibility
Next Post: Google Launches Largest Distributed Database of Open Source Vulnerabilities google launches largest distributed database of open source vulnerabilities»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month
  • Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
  • CTEM is the New SOC: Shifting from Monitoring Alerts to Measuring Risk
  • Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
  • WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network
  • New TokenBreak Attack Bypasses AI Moderation with Single-Character Text Changes
  • AI Agents Run on Secret Accounts — Learn How to Secure Them in This Webinar
  • Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction
  • Non-Human Identities: How to Address the Expanding Security Risk
  • ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

Copyright © TheCyberSecurity.News, All Rights Reserved.