Fun

How Hackers Exploited Twitter’s VPN Problems, Obtained God Mode and Took Over Accounts

News Feed - 2020-10-26 04:10:54

How Hackers Exploited Twitter"s VPN Problems, Obtained God Mode and Took Over Accounts


An investigation by the New York State Department of Financial Services has revealed how the great Twitter hack in July happened. A total of 130 high-profile, celebrity accounts were compromised and many were used to tweet about a bitcoin giveaway scam. How Twitter Was Hacked


The New York State Department of Financial Services (NYDFS) released its Twitter investigation report last week. It explains how the massive Twitter hack on July 15 happened, resulting in many high-profile accounts being accessed and used to tweet about a bitcoin giveaway scam.


A NYSE-listed technology company with a market cap of $40 billion, Twitter has more than 330 million total monthly active users and over 186 million daily active users, including over 36 million (20%) in the U.S., the NYDFS detailed.


The hack began on July 14 when one or more hackers called several Twitter employees, claiming to be calling from the IT department’s help desk about Twitter’s VPN, which a number of employees reported having problems with. “Employees had frequent problems with the VPN connections to the network,” the report details.


Twitter’s VPN problem ballooned when the company shifted to remote working in March due to the Covid-19 outbreak, which put a strain on the company’s technology infrastructure, resulting in frequent VPN problems. “The hackers took advantage of these issues and pretended to be calling from Twitter’s IT department about a VPN problem,” the NYDFS stated, elaborating: The hackers’ claims were far more credible – and ultimately successful – because Twitter’s employees were all using VPN connections to work and routinely experiencing VPN problems that required IT’s assistance.


The hackers directed the employees to a phishing website that looked identical to the legitimate Twitter VPN website and was hosted by a similarly named domain. “As the employee entered their credentials into the phishing website, the hackers would simultaneously enter the information into the real Twitter website. This false log-in generated an MFA notification requesting that the employees authenticate themselves, which some of the employees did,” the NYDFS explained. “While some employees reported the calls to Twitter’s internal fraud monitoring team, at least one employee believed the hackers’ lies.”


The report details that Twitter maintains “internal account management tools” to manage a range of user account issues, which the hackers gained access to. A number of authorized Twitter employees have a username and password to access these internal account management tools. According to the report: Overall, 130 Twitter user accounts were compromised during the Twitter hack. Of those, 45 accounts were used to send tweets. Twitter believes that for up to 36 of the 130 targeted accounts, the hackers also accessed DM inboxes.




During its investigation, the NYDFS conducted a survey and learned that 15 cryptocurrency companies blocked transfers to the hackers’ addresses posted on Twitter, and seven did not. Four crypto companies actively blocked their users’ attempts to send BTC to the hackers’ bitcoin addresses. In particular, the NYDFS found: Coinbase blocked approximately 5,670 transfers, valued at approximately $1,294,000. Square blocked 358 transfers, valued at approximately $51,000. Gemini blocked two transfers, valued at approximately $1,800. Bitstamp blocked one transfer, valued at approximately $250.


What do you think about this Twitter hack? Let us know in the comments section below. Hash Watch: 73% of Bitcoin Cash Blocks Mined With BCHN, Poloniex Launches Fork Futures NEWS | 30 mins ago Billionaire Paul Tudor Jones Sees Massive Upside in Bitcoin, Like Investing in Apple or Google Early NEWS | 1 day ago Tags in this story hack twitter, how to hack twitter, twitter accounts hacked, twitter bitcoin, twitter celebrity accounts, twitter hack, twitter hacker, twitter investigation, twitter vpn problem


Image Credits: Shutterstock, Pixabay, Wiki Commons Use Bitcoin and Bitcoin Cash to play online casino games here. Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article. Read disclaimerShow comments

News Feed
Ethereum Forms Rising Wedge Pattern – $2,200 Support Back In Focus?
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
2025-07-05 03:00 AM
As Bitcoin Nears $100,000: “Don’t Be Left Behind,” Robert Kiyosaki Says
Este artículo también está disponible en español. A known personal finance book author joined many cryptocurrency analysts in saying that Bitcoin could hit $100,000 anyti
2024-12-01 09:00 AM
Crypto Pundit Reveals What Will Happen If XRP Price Does Not Break $2.3
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
2025-04-08 08:00 AM
Elon Musk Says Holding Bitcoin Is Less Dumb Than Cash, Disputes Peter Schiff’s Claims About Money and BTC
Elon Musk Says Holding Bitcoin Is Less Dumb Than Cash, Disputes Peter Schiff"s Claims About Money and BTC Tesla and Spacex CEO Elon Musk has clarified his positi
2021-02-21 12:30 PM
Jesse Coghlan3 hours agoCrypto may see second wind in the US as courts ‘rein in the SEC’ — LawyerCrypto-focused lawyer Jeremy McLaughlin said the United States digital asset industry may re-ignite as the country’
2023-08-31 14:43 PM
Gareth Jenkinson1 hour agoCrypto.com registers in the Netherlands, cleared to advertise servicesThe exchange received the green light from De Nederlandsche Bank to offer services in the country.398 Total views7 Total sha
2023-07-28 16:53 PM
Riot Blockchain Buys 8,000 of Bitmain’s Latest Bitcoin Miners, Company Targets 1.5 EH/s by 2021
Riot Blockchain Buys 8,000 of Bitmain"s Latest Bitcoin Miners, Company Targets 1.5 EH/s by 2021Bitmain Technologies Inc. said Monday that Nasdaq-listed Riot Blockchain is buying 8,0
2020-08-26 04:30 AM
Undeterred by Fears of a Banking Crisis, ECB Raises Interest Rates by 50bps
Undeterred by Fears of a Banking Crisis, ECB Raises Interest Rates by 50bps The European Central Bank (ECB) has convened to raise three of its key interest rates by 50bps (0.5%), f
2023-03-18 07:30 AM
Samourai Wallet co-founder pleads not guilty, released on $1M bond
Turner Wright2 hours agoSamourai Wallet co-founder pleads not guilty, released on $1M bondThe terms of Keonne Rodriguez’s bail prevent him from engaging in “any cryptocurrency transactions, directly or indirectly,”
2024-04-30 06:49 AM
Gold-Based Digital Assets Issued in Russia
Gold-Based Digital Assets Issued in Russia A blockchain platform built by Russia’s largest banking institution, Sber, has been used to issue digital assets based on gold. The val
2022-12-29 17:30 PM
Derek Andersen2 hours agoCoinbase takes equity stake in Circle as USDC Centre Consortium shuts downCircle will take on full operational and governance responsibility after five years, thanks to increased regulatory clari
2023-08-22 06:44 AM
Biggest Movers:  SOL, NEAR, and AVAX Drop More Than 20% Lower on Wednesday
Biggest Movers:  SOL, NEAR, and AVAX Drop More Than 20% Lower on Wednesday Solana, NEAR and AVAX were all trading over 20% lower on Wednesday, as global crypto markets continued t
2022-05-12 03:00 AM