The incident dates back to when Twitter was still run by the previous management, before the takeover by Elon Musk.
The troubles for Twitter continue to not end. The stormy change of ownership has been accompanied by one turbulence after another, and now the social network will have to defend itself against the accusation of having negligently defended the data of its users. The incident dates back to when Twitter was still run by the previous management, before the takeover by Elon Musk .
At the beginning of 2022, Twitter confirmed that the data of over 5.4 million users had been stolen by exploiting an API vulnerability. According to a recent report by Bleeping Computer, in the meantime the data in question would have been exposed and made public. The situation seems more serious than imagined: to the 5.4 million users already involved, we add the data of about 1 million suspended users, as well as a further dump with the data of “tens of millions” of other users.
The owner of hacker forum Breached told Bleeping Computer that he was responsible for the data breach , claiming he had obtained instructions on how to exploit the vulnerability from another hacker known by the pseudonym ‘Devil’.
The leak – reveals computer security expert Chad Loder – would include users’ phone numbers, their email and other public information. A ‘sample’ – that is, a portion of the stolen information – has in the meantime also been posted on Mastodon by Loder himself – who, for the record, was recently banned from Twitter for still unknown reasons.