5.4 mn Twitter users' data leaked online, to grow even bigger

28-11-2022 Mon 12:13 IST | Technology | IANS | Technology
5.4 mn Twitter users' data leaked online, to grow even bigger

As Elon Musk goes gaga over transforming Twitter, at least 5.4 million Twitter user records have been stolen via an internal bug and leaked online on a hacker forum.

In addition to the 5.4 million records for sale online, there were an additional 1.4 million Twitter profiles collected using a different Twitter application programming interface (API) that have reportedly been shared privately among a few people.

The massive data consists of scraped public information as well as private phone numbers and email addresses that are not meant to be public, reports Bleeping Computer.

Security expert Chad Loder first broke the news on Twitter and was suspended soon from the platform.

"I have just received evidence of a massive Twitter data breach affecting millions of Twitter accounts in the EU and the US. I have contacted a sample of the affected accounts and they confirmed that the breached data is accurate. This breach occurred no earlier than 2021," Loder had posted on Twitter.

The data containing non-public information was stolen using a Twitter API vulnerability fix in January this year.

This data was collected in December 2021 using a Twitter API vulnerability disclosed in the HackerOne bug bounty programme, the report said on Sunday.

Most of the data consisted of public information, such as Twitter IDs, names, login names, locations, and verified status.A

It also included private information, such as phone numbers and email addresses.

Musk or Twitter were yet to comment on the report.

Pompompurin, the owner of the Breached hacking forum, told BleepingComputer that "they were responsible for exploiting the bug and creating the massive dump of Twitter user records after another threat actor known as 'Devil' shared the vulnerability with them," the report mentioned.

As hackers released 5.4 million records online, an even larger data dump has allegedly been created using the same vulnerability, according to the report.

"We were told that it consists of over 17 million records but could not independently confirm this," said the report.


More News
3rd T20I: Shubman Gill's ton, bowlers lead India to massive 168-run win over New Zealand
34 minutes ago
Motivational speaker Nick Vujicic calls on Andhra CM
37 minutes ago
Jagan richest CM in country facing graft charges: Pawan Kalyan
41 minutes ago
Amit Jogi calls on KCR in Hyderabad
1 hour ago
'Injustice to Telangana once again': BRS slams Budget
3 hours ago
3rd T20I: India win toss, opt to bat first against New Zealand
4 hours ago
Gujarat Police arrests fake currency notes kingpin from Telangana
4 hours ago
PM thumps desk 124 times during Sitharaman's shortest-ever budget speech
4 hours ago
Budget focusses on women empowerment, green growth: Sitharaman
5 hours ago
Prime Minister describes Budget 2023-24 as 'first of Amrit Kaal'
6 hours ago
T-Hub CEO hails initiatives to promote startups
7 hours ago
FTCCI hails Union Budget as growth-oriented
8 hours ago
TN edu deptt to provide best teachers, performing officials annual foreign trips
10 hours ago
Budget Relief: No tax for income up to Rs 7L in new tax regime
10 hours ago
New deposit scheme for women, limits for senior citizens increased
10 hours ago
Govt fixes fiscal deficit target at 5.9% of GDP
11 hours ago
Union Budget 2023-24: Big announcements
11 hours ago
Phone tapping allegations by 2 MLAs rock YSRCP
11 hours ago
Union Budget 2023-24: FM announces 15,000 cr development fund for tribal, marginalised section
11 hours ago
50 more tourism destinations to be developed: FM
11 hours ago