body { -ms-overflow-style: scrollbar; overflow-y: scroll; overscroll-behavior-y: none; } .errorContainer { background-color: #FFF; color: #0F1419; max-width: 600px; margin: 0 auto; padding: 10%; font-family: Helvetica, sans-serif; font-size: 16px; } .errorButton { margin: 3em 0; } .errorButton a { background: #1DA1F2; border-radius: 2.5em; color: white; padding: 1em 2em; text-decoration: none; } .errorButton a:hover, .errorButton a:focus { background: rgb(26, 145, 218); } .errorFooter { color: #657786; font-size: 80%; line-height: 1.5; padding: 1em 0; } .errorFooter a, .errorFooter a:visited { color: #657786; text-decoration: none; padding-right: 1em; } .errorFooter a:hover, .errorFooter a:active { text-decoration: underline; } #placeholder, #react-root { display: none !important; } body { background-color: #FFF !important; }

JavaScript is not available.

We’ve detected that JavaScript is disabled in this browser. Please enable JavaScript or switch to a supported browser to continue using twitter.com. You can see a list of supported browsers in our Help Center.

Terms of Service Privacy Policy Cookie Policy Imprint Ads info © 2023 Twitter, Inc.

Conversation

we have new details about today's Twitter hack. Spoke to one of the people involved in hack, they say a Twitter employee gave access. Sent screenshot of tool being used to hijack

Hackers Convinced Twitter Employee to Help Them Hijack Accounts

After a wave of account takeovers, screenshots of an internal Twitter user administration tool are being shared in the hacking underground.

83

1,908

2,335

Twitter just locked my account and made me delete a tweet about how this hack worked

21

334

1,089

Earlier, Twitter told us that it was only locking accounts that posted private personal information. The screenshot I tweeted has no personal information in it and was censored, it just shows how an internal Twitter tool

11

211

721

We have more updates coming in a few minutes, working on them now

9

77

507

OK, we talked to another hacker. Were able to confirm how they got accounts: Twitter employee used internal tool to change email addresses associated with accounts. Twitter seems to have just confirmed this in tweets as well

Hackers Convinced Twitter Employee to Help Them Hijack Accounts

After a wave of account takeovers, screenshots of an internal Twitter user administration tool are being shared in the hacking underground.

2:44 AM · Jul 16, 2020

Replying to

we spoke to two hackers and we were able to independently verify they were in control of hijacked accounts today. One of them said they paid the Twitter employee to help them take over accounts; not sure on the specifics here at the moment

83

938

1,647

spoke to Twitter about its "blacklists" here:

Twitter 'Blacklists' Lead the Company Into Another Trump Supporter Conspiracy

A conservative mindset primed for conspiracy and Twitter's opaque moderation methods are a recipe for a scandal.

12

64

143

ĿЄVЄĿ ㄨ²

@BraveNewtWorld

Replying to

@save_the_tweet

#please #save and #eternalize this tweet to the #blockchain forever

1

1

1

Replying to

Holy......frick.

5

Julio Sánchez Onofre

Parody, cause EIon Musk

Replying to

and

Espero esos taquitos

@EduardoDynamite

😂

1

1

Replying to

and

Hard to imagine why an insider thought they could get away with that. Twitter should make short work of that investigation.

4

4

46

Replying to

and

Well howdy there’s real security @ Twitter eh?

15

Replying to

and

My nephew is telling me the hacker posted on 4 chan yesterday that he was going to do this hack today. He took this screenshot yesterday.

4

35

58

Replying to

and

I am surprised this doesn't happen more often. Updating email addresses is a basic support function and I am sure many can do it. Just change the email to one you create and you now "own" the account. The blacklisting/suppression tools they have access to are worrying though.

1

2

14