Twitter Break-in An Example of Too Much Personal Data Available
A hacker made off with confidential Twitter documents after breaking into an employee’s e-mail account, the company’s co-founder confirmed yesterday.
Twitter co-founder Biz Stone, stated that a hacker calling himself Hacker Croll broke into an administrative assistant’s e-mail account, then used that to collect information that let him access the employee’s Google Apps account.
“This attack had nothing to do with any vulnerability in Google Apps, which we continue to use,” he said in a blog entry yesterday. “This is more about Twitter being in enough of a spotlight that folks who work here can become targets.
What this break-in does reveal very clearly…
Gee – I’m a evil SOB (hacker), and I think I’ll use my computer to use combinations of this user’s profile data to match the security questions for a computer password reset… BRILLIANT !!!
Hacker Croll gained access to the Twitter employee’s account using Google’s password reset feature, which poses several personal questions to authenticate the user. Hacker Croll likely dug up possible responses by rooting through the Web for details on the assistant, then used those to reset the password to one only he knew.
Information obtained from the stolen Twitter employee’s company documents revealed some very interesting Twitter forecasts, some of which has been leaked to various internet sources like…
…………..Posted on TheJunction.net…where it all comes together
No related articles.
Leave a reply