Twitter data breach shows APIs are a goldmine for PII and social engineering.
https://venturebeat.com/security/twitter-social-engineering/
A Twitter API vulnerability shipped in June 2021 (and later patched) has come back to haunt the organization. In December, one hacker claimed to have the personal data of 400 million users for sale on the dark web, and just yesterday, attackers released the account details and email addresses of 235 million users for free.
Questing the legitimacy of the 400 million user leak last July when nothing has surfaced, no proof has been given and no reports of phishing not to mention the fact that twitter only has 340 million users since 2022 and even less since Elon Musk started killing off accounts without real justification other than the fact some accounts have hurt his fragile ego almost as fragile as the stability of his net worth.
According to Visual Capitalist Twitter only has 326 million users, not 400 million like the hackers claimed although this infographic is dated 2020 according to Statista as of December 2022 Twitter has a user base of 368 million again, not 400 million.
https://www.statista.com/statistics/303681/twitter-users-worldwide/
Every year before that there’s less and every year thereafter there’s projected to be less even though the hackers claim 400 there’s only 368 if they’re lying about this what else are they lying about?
News has broken about the second or maybe 3rd hack on 5.1.23 so it seems the 235m hack was legitimate but there is yet to be proof about the original hack in July and the second in December 2022.
Hackers will use the new leaked Twitter database (Read here https://www.linkedin.com/feed/update/urn:li:activity:7016314513406726145/) in order to : 1. Target Crypto Twitter accounts (.eth in name or other methods) 2. Hack into high profile accounts (follower count or otherwise) 3. Hack into "OG" accounts with good usernames 4. Hack into political accounts 5. Doxx "anonymous" accounts that didn't use a dedicated email for Twitter
https://www.linkedin.com/feed/update/urn:li:activity:7016314513406726145/
It goes without saying that agencies around the world will use this database as well to further harm our privacy.