Sign In

Communications of the ACM

ACM TechNews

A Hacker Used Twitter's Own 'Admin' Tool to Spread Cryptocurrency Scam

View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook
The Twitter logo over a field of code.

A hacker allegedly gained access to a Twitter admin tool on the companys network and hijacked high-profile Twitter accounts to spread a cryptocurrency scam,


A hacker this week accessed an "admin" tool on Twitter to commandeer prominent Twitter accounts to spread a cryptocurrency scam, according to a person with direct knowledge of the incident.

This person said the hacker ("Kirk") generated more than $100,000 in just hours by using the tool to reset the email addresses of targeted accounts so account-holders had more difficulty regaining control; the scam claimed whatever funds a victim sent "will be sent back double."

The person theorized that Kirk accessed the tool by hijacking a Twitter employee's corporate account.

Twitter verified that it suffered "a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools."

Twitter briefly suspended certain account actions, and prevented verified users from tweeting, to stem the exploits.

From TechCrunch
View Full Article


Abstracts Copyright © 2020 SmithBucklin, Washington, DC, USA


No entries found