This morning, a full-scale attack on Twitter took over some of the largest verified social network accounts, including those of Joe Biden, Elon Musk, Bill Gates, Kanye West, Kim Kardashian, Wiz Khalifa, Warren Buffett, Mike Bloomberg, Barack Obama and Jeff Bezos.
The hacker posted a message about the fake gifts from the compromised accounts, asking for Bitcoin (BTC) payments and promising to return double the amount received.
A curious message amidst the noise of the Twitter hacks
Many of the accounts responded quickly to the hacking by removing the tweets and temporarily blocking the platform of all verified accounts until the situation is resolved.
Twitter support said:
„We’re aware of a security incident affecting Twitter accounts. We are investigating and taking steps to resolve it. …] We continue to limit the ability to tweet, reset the password and some other account functionality while we investigate this.
Twitter CEO Jack Dorsey said the team continues to investigate what happened and said, „We all feel terrible about what happened.
Numerous companies with compromised accounts responded. Binance announced that they are taking steps to protect their assets by blacklisting the hacker’s addresses and are retaking control of their Twitter account. The exchange also stated that no Binance users sent Bitcoin to the address.
How did they do that?
The mystery behind the hack is how the attackers gained access to so many high-profile accounts. One theory is that it was a former Twitter employee:
„Probably an inside job… knew the inner workings of Twitter… too obvious would he be a disgruntled employee?“
A post by Vice supports this theory with screenshots of Twitter’s internal administration panel revealed by the underground hacking community. Some users even named a particular former Twitter developer as being responsible for the attack, although this is not fully verified and no evidence was provided.
Joe Biden’s Twitter account is hacked by criminals asking for BTC donations
BadCrypto podcast host Travis Wright shared a screenshot in which a group called BoboChan took responsibility:
Andreas Antonopoulos suggested an alternative theory, saying that Bitcoin Era might not be the place where the hacker got in, „It seems that some Twitter API posting service was compromised and is being used to send fake ‚free‘ tweets. […] I don’t think this is Twitter’s responsibility. He went on to say that these services often have weaker security and limited 2FA options.