A beforehand recognized vulnerability in Twitter’s databases has now allowed hackers entry to the private data of 5.4 million customers. In line with reports, this knowledge is up on the market for $30,000. We take a look at how stolen private data can result in multistage cryptocurrency scams.
HackerOne consumer “zhirinovskiy” submitted the bug report, which explains how an attacker can acquire the telephone quantity and/or electronic mail tackle related to Twitter accounts even when the consumer has hidden these fields within the privateness settings.
Curiously, Twitter workers acknowledged this as a “legitimate safety difficulty” and promised to look into it additional earlier than awarding consumer zhirinovskiy a $5,040 bounty.
The hacker often known as “satan” is promoting the Twitter database on Breached Boards, which can include data from “Celebrities, to Corporations, randoms, OGs, and so on.”
The Crypto Occasions has beforehand reported on a number of warnings issued by the Federal Commerce Fee (FTC) relating to cryptocurrency scams, together with how such scammers target the LGBTQIA+ community and the way over 46,000 individuals have reported losing more than $1 billion since 2021.
Crypto scammers and hackers steadily try and acquire data that permits them entry to a digital pockets or different kinds of non-public knowledge.
Additionally Learn: British Military’s Social Media Account Hacked to Advertise Crypto scams
Group-IB, a Singapore-based intelligence agency, not too long ago investigated an assault that uncovered hundreds of individuals’s private data and was used to hold out a focused multistage Bitcoin rip-off.
The hackers used the victims’ telephone numbers and emails to redirect them to web sites pretending to be well-known media retailers.
“Corporations and celebrities whose names have been hijacked by fraudsters endure reputational injury and face diminished buyer belief,” Ilia Rozhnov, the Asia Pacific head of Group-brand IB’s safety crew stated.
The investigation confirmed that the identical fraudulent funding platform was working underneath numerous completely different names. These embody Blockchain Banking, Bitcoin Supreme, Bitcoin Rejoin, and Crypto Money.