The information of more than 5 million 400 thousand users of twitter is for sale in Breach Forumsa hacking forum. The data was leaked due to a security flaw of the social network that was reported since January 2022.
In accordance with RestorePrivacyspecialized portal that spread the information, the hacker that offers the database asks for a payment of at least 30 thousand dollars for her.
According to the description of the offer, it is about information of 5 million 485 thousand 636 users of the social network, among which meet celebrities and companies. Likewise, it is described that among the data there are phone numbers and emails used for login.
The owner of Breach Forums confirmed the authenticity of the leaked data and confirmed that were obtained due to failure in the security system of the social network. This vulnerability was noticed by the platform user @zhirinovskiy HackerOnewho at the beginning of the year shared the situation with Twitter.
The mistake was detected in authorization process for users with devices Android. Specifically in the process to check the duplication of an account.
Through a report, also published in hackerone, who made the discovery issued a warning: “The vulnerability allows anywherewithout any authentication, get a twitter id (which is almost the same as getting the username of an account) of any user by sending a phone number/email even if the user has prohibited this action in the privacy settings”.
Likewise, the report warned that among the consequences of a leak of this type could be the use of information for advertising purposes but also to tag celebrities in different malicious activities.
Days after this error was made public, a member of the Twitter team assured that they would conduct an investigation into it and asked the author of the report to keep the details of it private until the matter was fully investigated.
However, more than six months after the flaw was identified, the information of millions of users was compromised. According to RestorePrivacy, Twitter confirmed that they are investigating about the leak but has released more details.
Tik Tok user data leak
It should be noted that this is not the only time social media user data has been leaked recently. mid june audios of Tik Tok meetings leakedaccording to which part of the staff of the asian company accessed the private data of users of the United States from China.
The news caused controversy because, as Tik Tok had pointed out, the data of Americans was stored in their country of origin and not in Asia. After the controversy, the company confirmed that previously some of the information was stored in Singapore.
But Tik Tok also detailed that the data is currently stored in the United States and that are working on removing from their databases old information, as well as managing to also save backup copies to the American continent.
However, the conversation on the subject continued, as the portal buzzfeed exposed that in the new Data protection policy Possibly some were considered, such as telephone numbers and birthdays, but not others, such as public profiles and published videos.
Cybercriminals are using LinkedIn to scam, how to identify the dangers
On this website you can recycle and monitor what they do with the waste
How to prevent others from using your own Instagram photos and videos to remix