Newsbytes
  • India
  • Business
  • World
  • Politics
  • Sports
  • Science
  • Entertainment
  • Auto
  • Lifestyle
  • Inspirational
  • Career
  • Bengaluru
  • Delhi
  • Mumbai
  • Videos
  • Phone Reviews
  • Find Cricket Statistics
Hindi
More
Newsbytes
Hindi
Newsbytes
User Placeholder

Hi,

Logout


India
Business
World
Politics
Sports
Science
Entertainment
Auto
Lifestyle
Inspirational
Career
Bengaluru
Delhi
Mumbai
Videos
Phone Reviews
Find Cricket Statistics

More Links
  • Videos

Download Android App

Follow us on
  • Facebook
  • Twitter
  • Linkedin
  • Youtube
 
Home / News / Science News / Twitter bug exploited for hacking high-profile accounts, posting tweets
  • Science

    Twitter bug exploited for hacking high-profile accounts, posting tweets

    Shubham Sharma
    Written by
    Shubham Sharma
    Twitter
    Last updated on Dec 30, 2018, 01:06 pm
    Twitter bug exploited for hacking high-profile accounts, posting tweets
  • In a surprising development, a group of UK-based security searchers was able to hijack high-profile celebrity accounts.

    They interacted with multiple accounts, including those of British documentary filmmaker Louis Theroux and news anchor Eamonn Holmes.

    However, the attack was not ill-intended but was designed specifically to highlight a major flaw in Twitter's account security system.

    Here's more on the matter.

  • In this article
    How these researchers posted tweets? Remember Twitter's SMS access feature? Twitter claims bug is resolved, but researchers deny Also, DMs and other account details remain untouched Is SMS authentication a good option?
  • Issue

    How these researchers posted tweets?

    How these researchers posted tweets?
  • On Friday, The Guardian had reported that British firm Insinia hijacked the accounts to flag a vulnerability, which could be exploited via SMS.

    They spoofed mobile numbers of multiple account holders to send out unauthorized Tweets on their behalf - without entering passwords.

    The goal was to highlight how simple trick could be used to spread misinformation or ruin reputation of people.

  • Information

    Remember Twitter's SMS access feature?

  • The vulnerability is tied to SMS access feature that Twitter has long been providing. Basically, users who have got SMS-enabled can post anything to their account by texting the content with a simple command to a specific number (longcode/shortcode). In this case, researches used longcodes.

  • Twitter's response

    Twitter claims bug is resolved, but researchers deny

    Twitter claims bug is resolved, but researchers deny
  • After the vulnerability was flagged, Twitter issued a statement saying that the bug has been resolved.

    However, the researchers involved in the matter denied that claim in a statement to Gizmodo.

    In fact, they hijacked a few more accounts to demonstrate how the vulnerability still remains unpatched on many accounts.

    Notably, it also remains unknown how many accounts are actually affected by this issue.

  • DM acces

    Also, DMs and other account details remain untouched

    Also, DMs and other account details remain untouched
  • Though the bug relates to a major security concern, it is important to note that it only allows users to send out tweets via SMS.

    Meaning, a potential attacker won't be able to use it for accessing your profile information or direct messages.

    Still, a loophole to send out unauthorized tweets is relatively dangerous and should be patched as soon as possible.

  • Quote

    Is SMS authentication a good option?

  • "We should not be using 50-year old technology," Mike Godfrey, who runs Insinia, told The Guardian. "It is massively flawed by design. Even someone completely unskilled could carry this attack within half an hour. This took us 10 minutes".

  • Twitter
  • Security
  • Social Media
  • The Guardian
  •  
View all questions (4)
Latest News
  • Coronavirus: Huge vaccine wastage by states, especially in Tamil Nadu
    Coronavirus: Huge vaccine wastage by states, especially in Tamil Nadu
    India
  • Maserati Levante Hybrid, with a top-speed of 240km/h, breaks cover
    Maserati Levante Hybrid, with a top-speed of 240km/h, breaks cover
    Auto
  • MP's largest COVID-19 care center set up in Indore
    MP's largest COVID-19 care center set up in Indore
    India
  • 'Shang-Chi' trailer released, introduces first Asian superhero of MCU
    'Shang-Chi' trailer released, introduces first Asian superhero of MCU
    Entertainment
  • As COVID-19 rages, Delhi Police extends humanitarian assistance to residents
    As COVID-19 rages, Delhi Police extends humanitarian assistance to residents
    Delhi
Related Timelines
  • Instagram vulnerability could have led to account hijacks; now fixed
    Instagram vulnerability could have led to account hijacks; now fixed
    Science
  • #BugAlert: Gmail bug allowed sending fake emails from real accounts
    #BugAlert: Gmail bug allowed sending fake emails from real accounts
    Science
  • #WeeklyRecap: OnePlus Nord launch, massive VPN leak, Garmin's outage, more
    #WeeklyRecap: OnePlus Nord launch, massive VPN leak, Garmin's outage, more
    Science
  • Twitter hackers accessed DMs of dozens of high-profile accounts
    Twitter hackers accessed DMs of dozens of high-profile accounts
    Science
Trending Topics
Samsung SpaceX Apple OnePlus Mobiles Android TV Smart TV Latest Gadget Launch MediaTek Dimensity 1000+ COVAXIN Latest Tech News Upcoming Mobile Phones
Next News Article
Share
Cancel

Want to share it with your friends too?

Facebook Whatsapp Twitter Linkedin
Copied

Love Science news?

Subscribe to stay updated.

Science Thumbnail
India News Business News World News Politics News Sports News Science News Entertainment News Auto News Lifestyle News Inspirational News
Career News Bengaluru News Delhi News Mumbai News Bharti Airtel Mukesh Ambani Indian Premier League Samsung Virat Kohli Rohit Sharma
Cricket News Qualcomm YouTube Hollywood News WhatsApp Bollywood News ISRO Spotify SpaceX Yoga
Honda Batman Football News BMW Vaccine Reliance Jio OPPO Food News, Healthy Recipes Apple Royal Challengers Bangalore
Toyota Fashion Tips Manmohan Singh Sensex Mercedes Taylor Swift Sidharth Malhotra Isha Ambani India Vs England Cricket OnePlus Mobiles
Android TV Smart TV Marvel Comics Avengers
About Us Privacy Policy Terms & Conditions Contact Us News Reviews News Archive Topics Archive Find Cricket Statistics
Follow us on
Facebook Twitter Linkedin Youtube
All rights reserved © NewsBytes 2021