" />
Web

Twitter hack was not an “isolated incident” & not the work of amateurs

Twitter hack was not an “isolated incident” & not the work of amateurs
piers.scott@sociable.co'

A targeted and professional hack was perpetrated against Twitter and its users last week with many users’ details compromised and potentially stolen, the company admitted on its blog late on Friday.

Twitter reports that a quarter of a million of its users’ accounts were victims in the attack, with the hackers gaining access to usernames, email addresses, and session tokens. The company says that the hackers also got access to users’ passwords but these were encrypted, not in plain text, or were salted.

“Our investigation has thus far indicated that the attackers may have had access to limited user information – usernames, email addresses, session tokens and encrypted/salted versions of passwords”

Twitter said that the hack was not an “isolated incident” and was not the work of amateurs and that it believes that other companies have been subject to the same type of illegal access.

“This attack was not the work of amateurs, and we do not believe it was an isolated incident. The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked. ”

Citing the New York Times’ and the Wall Street Journal’s recent attacks Twitter says this hack is part of an increasing number of professional-level attacks against US technology and media companies, although Twitter did say who it suspects was responsible.

It’s not clear if this hack was the reason for the downtime the site suffered on Thursday last week.

While this is a serious attack only a small percentage of users need to be worried. Twitter’s latest data reports that the company has 200 million monthly active users (with a greater number of inactive users).  Even if the hackers only targeted such monthly active users the total percentage of hacked accounts would come to 0.125% of active users.

The company has reset victims’ passwords and sent emails alerting them that their accounts were potentially compromised.  Twitter is also asking all users to reset their passwords and follow proper “password hygiene.”

The company recommends that users;

  • Create passwords that are at least 10 characters in length.
  • Use a combination of upper and lower case, numbers, special characters (punctuation marks).
  • Disable Java (not JavaScript) in browsers.
  • Never reuse the same password on multiple sites or multiple accounts.
  • Avoid using common passwords (e.g. 123456, password).

Twitter users who want to change their passwords can do so here.

Twitter says it is still gathering information about the hack and is working with US law enforcement agencies.

Click to add a comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Web
piers.scott@sociable.co'
@pdscott

Piers Dillon-Scott is co-editor of The Sociable and writes about stuff he finds. He likes technology, media, and using the Oxford comma (because it just makes sense).

More in Web

microsoft

Microsoft Predicts Terence McKenna’s Cyberdelic Vision of Virtual Reality

Tim HinchliffeDecember 7, 2016
julian assange

Tickets for Q&A with Julian Assange go on sale despite rumors he’s missing

Tim HinchliffeNovember 30, 2016
snoopers

Tech-illiterate Parliament passes 500 page Snoopers bill into UK law

Tim HinchliffeNovember 29, 2016
smart-home

Vivaldi browser syncs IoT with smart-home lighting control

Tim HinchliffeNovember 24, 2016
trump hiring

Trump hiring candidates who ‘Won’t Embarrass the President’: How to apply

Tim HinchliffeNovember 14, 2016
losing traffic

5 ways to prevent your website from losing traffic

Guest ContributorNovember 13, 2016
attention

6 Tips for Writing Winning Content for Short Attention Span Readers

Guest ContributorNovember 5, 2016
seo monitoring

12 Free SEO Monitoring and Analysis Tools Every Business Needs

Guest ContributorOctober 30, 2016
cms-knife

A Publisher’s Swiss Army Knife: The Main Challenges to Creating a World Class CMS Platform

Guest ContributorOctober 28, 2016