On July 30, Twitter released one Update that showed How hackers accessed your internal network and account management tools during the last attack.
He also gave details of additional measures to improve security against hackingthat has managed to raise 12 Bitcoin (BTC) from attacking Twitter accounts from celebrities and crypto companies.
Phishing as a method of attack
The update confirmed that Twitter had been the victim of a social engineering attack. This led to rumors that hacking could have been an inside job.
According to the message, The July 15 incident started with a spear phishing attackand speak to a small number of employees over the phone for network access credentials:
“Not all of the people we spoke to initially had permission to use the account management tools, but the attackers used their credentials to access our internal systems and get information about our processes.”
The criminals then used this knowledge to target other employees with access to account support tools.
In response to reports that more than 1,000 employees had access to management tools, Twitter said so There are teams around the world that help with account support.
However, Access to tools is strictly limited and it is only granted for legitimate business reasons. Access has been further restricted since the attack, and A training program on the risks of phishing attacks is ongoing.
During the attack Hackers accessed 130 accounts, tweeted from 45, entered 36’s direct mail inbox, and downloaded Seven’s Twitter data.