OK, we talked to another hacker. Were able to confirm how they got accounts: Twitter employee used internal tool to change email addresses associated with accounts. Twitter seems to have just confirmed this in tweets as well
we have new details about today's Twitter hack. Spoke to one of the people involved in hack, they say a Twitter employee gave access. Sent screenshot of tool being used to hijack
New: multiple sources in or around the criminal world provided screenshots of an internal Twitter panel they say is linked to the account takeovers. Twitter is now removing images of the panel from the social network
Update from us from speaking to people involved in the hack and obtaining more screenshots: Twitter employee leveraged access to internal tool to help take over accounts today. Hackers paid insider
This Twitter hack stuff is amazing. Not only does it prove how weak their security is, it also proves they lied about the types of tools they had in place when they were questioned by congress. They're suspending accounts over sharing this btw.
SEARCH BLACKLISTS CONFIRMED HUGE NEWS: Twitter Is Removing Images of Internal Tool Sources Say Enables Account Takeover
the first thing i thought when i saw this screenshot of this twitter backend system is that — real or not — it is going to massively reignite the ]Twitter shadowbans the right' narrative. like, ted cruz and djt jr gonna be tweeting it within a few hrs
“We used a rep that literally done all the work for us,” one of the sources told Motherboard. The second source added they paid the Twitter insider. This is great. The hack wasn’t even a hack. Just paying an insider to use their insider tools to do it
Man this is an absolute disaster for Twitter. One source is saying a Twitter insider was paid off by hackers responsible for the attack today.
Hackers Convinced Twitter Employee to Hijack Accounts for Them - VICE
Twitter wouldn’t have to worry about whether or not last week’s attackers read or exfiltrated direct messages if it had end-to-end encrypted them.
Update: I've obtained a new screenshot from a source in the SIM swapping community I've known for a while. Shows the internal panel and the account. Binance is one of the accounts taken over today. Source says used a Twitter rep for the takeovers
Key information here on how the Twitter hack likely happened
Twitter internal panel linked to account hijackings
Twitter Is Removing Images of Internal Tool Sources Say Enables Account Takeover
Twitter, meet Streisand Effect PS: If my account mysteriously disappears from Twitter after this, that is your cue the company is escalating efforts to silence discussion of its internal security features 🤷‍♂️
You’re probably wondering how we got in this situation...
Wait, let me get this straight, Motherboard promised the hackers anonymity???
surely what happened here also required bypassing some other layer of security that prevents Twitter employees from resetting emails on multiple huge accounts without triggering an alarm for the company's infosec team. surely? i hope?
It sounds like the twitter "hack" was actually a fairly sophisticated inside job money-making scheme. Basically the plot of a current-year remake of Office Space.
Leaving the back door unlocked yes
If Vice’s sources are correct, the ‘hackers’ paid a corrupt employee with high-level access. This is a security risk vector that rarely raises its head, but it’s a scary one.
Motherboard reported some of the accounts may have had their email addresses changed, and if that's the case, then I can't imagine why the attackers wouldn't have full access to the accounts, including the DMs.
Hackers Convinced Twitter Employee to Hijack Accounts for Them via
Twitter is banning users who post screen shots from the hack that prove Twitter shadow bans and blacklists trends.
Twitter is banning users for posting a screen shot that exposes all of their lies.
"We used a rep that literally done all the work for us," one of the sources told Motherboard. The second source added they paid the Twitter insider. Motherboard granted the sources anonymity to speak candidly about a security incident
Twitter Is Removing Images of Internal Tool Sources Say Enables Account Takeover
🚨 "A Twitter insider was responsible for a wave of high profile account takeovers on Wednesday, according to leaked screenshots obtained by Motherboard and two sources who took over accounts."
lmaoo... supposedly the “hacker” just paid an insider at twitter
It looks like Twitter is going to have some explaining to do.
Hackers Convinced Twitter Employee to Help Them Hijack Accounts
How could some small trader pull this off? Pay off a (presumably disgruntled) twitter employee
Sometimes I wonder how the entirety of modern civilization doesn't just come tumbling down.
Suggestion that it was an inside job
Hackers Convinced Twitter Employee to Help Them Hijack Accounts: After a wave of account takeovers, screenshots of an internal Twitter user administration tool are being shared in the hacking underground via