Chad LoderThe massive Twitter data breach is real. Here is a small offer of proof. There is data from entire countries in the data set.
Nephryn@chadloder What kind of data did they access? I read name, phone number, and Twitter handle, but in this screen shot I see text that looks like parts of conversations.
@nephryn Phone number, verified (true/false), account name, account bio. Tens of millions, perhaps over 100M
Barbara@chadloder @nephryn oh no 😳😳
@chadloder Okay. Thank you. The reasons not to return to the bird app really do pile up.. 🤦♀️🙄
Angry Centrist@chadloder @nephryn well, crap. That wasn't the number that would be easy to change. 🤬
Julie Webgirl
TonyK@juliewebgirl @chadloder @nephryn Presumably they have either the email address or phone number you suited to set up the account. Combined with tweets you sent or read, that would have huge value to marketers and probably hackers.
@Cranky_Tony @chadloder @nephryn
Yeah, my point is that people hand over their info when asked on a sign up form way too easily and don't actually read nor look for the "skip" button nor have throwaway emails, etc. then are outraged later.
Yeah, my point is that people hand over their info when asked on a sign up form way too easily and don't actually read nor look for the "skip" button nor have throwaway emails, etc. then are outraged later.
Ozwobbly@chadloder @nephryn so that's likely to be all the active users at that time then?
skryIf you didn't turn on the permission that lets people find you with your phone number, you might be okay. It sounds like that was the service that was abused to create this exposure of personal information.
Bob Brown 🕹️@skry @ozwobbly @chadloder @nephryn suggestion here that this option “seems to be on by default” https://9to5mac.com/2022/11/25/massive-twitter-data-breach/amp/
Massive Twitter data breach was far worse than reported, reveal security researchers
A massive Twitter data breach last year, exposing more than five million phone numbers and email addresses, was worse than initially reported. We’ve been shown evidence that the same security vulnerability was exploited by multiple bad actors, and the hacked data has been offered for sale on the dark web by several sources. It had […]
@gurubob @skry @chadloder @nephryn
I had it turned off because I'm usually careful.about these things but I'm a little worried that twitter would use the same dataset for this as MFA
@ozwobbly @gurubob @chadloder @nephryn
9 to 5 Mac confirms: https://9to5mac.com/2022/11/25/massive-twitter-data-breach/
Massive Twitter data breach was far worse than reported, reveal security researchers
A massive Twitter data breach last year, exposing more than five million phone numbers and email addresses, was worse than initially reported. We’ve been shown evidence that the same security vulnerability was exploited by multiple bad actors, and the hacked data has been offered for sale on the dark web by several sources. It had […]
Kim Anez
Rojan Seth (he/him)@chadloder @nephryn Do you know of any services which can confirm the precise data that was leaked for one's *own* account (after proving ownership of that account—like posting from account or emailing from a leaked address?).