City
Epaper

5.4 mn Twitter users' data leaked online, to grow even bigger

By IANS | Updated: November 28, 2022 12:10 IST

New Delhi, Nov 28 As Elon Musk goes gaga over transforming Twitter, at least 5.4 million Twitter user ...

Open in App

New Delhi, Nov 28 As Elon Musk goes gaga over transforming Twitter, at least 5.4 million Twitter user records have been stolen via an internal bug and leaked online on a hacker forum.

In addition to the 5.4 million records for sale online, there were an additional 1.4 million Twitter profiles collected using a different Twitter application programming interface (API) that have reportedly been shared privately among a few people.

The massive data consists of scraped public information as well as private phone numbers and email addresses that are not meant to be public, reports Bleeping Computer.

Security expert Chad Loder first broke the news on Twitter and was suspended soon from the platform.

"I have just received evidence of a massive Twitter data breach affecting millions of Twitter accounts in the EU and the US. I have contacted a sample of the affected accounts and they confirmed that the breached data is accurate. This breach occurred no earlier than 2021," Loder had posted on Twitter.

The data containing non-public information was stolen using a Twitter API vulnerability fix in January this year.

This data was collected in December 2021 using a Twitter API vulnerability disclosed in the HackerOne bug bounty programme, the report said on Sunday.

Most of the data consisted of public information, such as Twitter IDs, names, login names, locations, and verified status.A

It also included private information, such as phone numbers and email addresses.

Musk or Twitter were yet to comment on the report.

Pompompurin, the owner of the Breached hacking forum, told BleepingComputer that "they were responsible for exploiting the bug and creating the massive dump of Twitter user records after another threat actor known as 'Devil' shared the vulnerability with them," the report mentioned.

As hackers released 5.4 million records online, an even larger data dump has allegedly been created using the same vulnerability, according to the report.

"We were told that it consists of over 17 million records but could not independently confirm this," said the report.

Disclaimer: This post has been auto-published from an agency feed without any modifications to the text and has not been reviewed by an editor

Tags: Bleeping ComputerChad loderusNew DelhiTwitterThe new delhi municipal councilTwitter twitterTwitter sevaDelhi south-westTwitter cmoTwitter inc.
Open in App

Related Stories

MumbaiAI Voice Scam in Mumbai: Juhu Trader Duped of Rs 50,000 as Fraudster Mimics Brother’s Voice

InternationalEarthquake in Russia: Quake of Magnitude 8.0 Strikes Kamchatka Peninsula; Tsunami Warning Issued

InternationalNASA Layoffs: 20% or 3,870 Employees to Exit US Space Agency

InternationalMichigan Plane Crash: 2 Killed After Small Aircraft Crashes Into Storage Facility Near Lowell City Airport in US

International'System-Wide Ground Stop': Alaska Airlines Grounded Over 200 Planes Due to IT Outage

Technology Realted Stories

TechnologyParacetamol drug not banned in India, says Anupriya Patel

TechnologyBharti Hexacom Q1 profit drops 23 pc, revenue rises over 18 pc YoY

TechnologyBharti Airtel’s Q1 net profit jumps 57 pc to Rs 7,421.8 crore, revenue rises 28 pc

TechnologyGovt’s NCD screening drive diagnoses over 5 cr adults with hypertension, 3 cr with diabetes

TechnologyE-commerce export hubs to lower logistics cost for Indian SMEs