BEACON TRANSCRIPT – According to a recent report, nearly 33 million account info and credentials stolen from as many Twitter users are now being put on sale on the dark web. Despite the report, Twitter said that its servers haven’t been compromised.
Instead, the company thinks that hackers obtained the data by trial and error when they compared two major databases comprising millions of stolen data from MySpace and LinkedIn.
It is because users often employ the same passwords on various accounts. So it was not hard for hackers to guess what their login info is for Twitter. This is how, the company believes, Mark Zuckerberg’s own account was compromised earlier this week.
Facebook owner Mark Zuckerberg saw his Twitter account being taking over by a team of hackers dubbed OurMine. The hackers posted some messages on his behalf and reassured him they meant no harm but to test his security. The hackers also noted that the tech entrepreneur’s password was as simple as “dadada.”
Others celebrities got their Twitter accounts broken into such as Katy Perry and Lana Del Rey. But Twitter ruled out the possibility of a hack. It said that its cyber security teams are reviewing the leaked data from MySpace and LinkedIn and compare it to its users’ login info.
“Our systems have not been breached,”
a spokesperson for the microblogging site said.
According to independent reports, about 32.9 million Twitter accounts and passwords are now put on auction on dark web marketplaces for $5,700 (10 Bitcoins).
On Friday, Michael Coates, one of the site’s senior cybersecurity experts, said that several Twitter accounts had to be locked for “extra protection.” Users who will try to access them will be immediately prompted to type in a new password.
According to a separate report, although no one claimed the leak, Russian hackers are most likely the culprits. Experts noted that many compromised Twitter accounts belong to Russian users. So, experts believe that the data might have been stolen via those users’ web browsers.
Other security experts believe that the recent hacks are a proof that systems that rely on usernames and passwords are no longer safe in the face of this century’s cyber criminals. While some hackers steal data to make a statement like the Ashley Madison hack, others try to monetize the data such as Sony, MySpace, and LinkedIn data breaches. In either case, weak passwords were the cause.
Image Source: Wikimedia