Twitter hacking 'coordinated social engineered attack'; says 'most functionality restored'

Social media giant Twitter labelled the latest attack on verified Twitter accounts of major companies and individuals as 'a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools'. 

On July 16, the Twitter accounts of Barack Obama, Bill Gates, Jeff Bezos, Elon Musk, and many other personalities and well as companies were hacked by purported Bitcoin scammers to launch a bitcoin scam. Providing the latest update, Twitter, in its statement, said that the investigation was ongoing and further detailed into the steps taken immediately by the company to respond to the attack. 

In the latest update provided by Twitter, the social media giant said that the attackers who targetted their employees used this access to take control of many highly-visible (including verified) accounts and Tweet on their behalf. Further, Twitter said that it immediately locked down the affected accounts and removed Tweets posted by the attackers. Functionality was also limited in large group accounts. Twitter further said that it had locked the accounts which had been compromised and that it will lift the lock once it's secure to do so.  

READ | CEO Jack Dorsey Issues First Statement After Twitter Accounts Hacked In Bitcoin Scam

'Coordinated social engineering attack'

 READ | Twitter Blocked Verified Handles Before Restoring Accounts As It Probed Bitcoin Sca

READ | BitTorrent CEO Justin Sun Announces $1 Million Bounty On Bitcoin Scammers, Decries Hacking

Twitter accounts hacked by Bitcoin scammers

The scam was traced when Musk’s account issued a tweet at 4:17PM ET that read - “I‘m feeling generous because of Covid-19. I’ll double any BTC payment sent to my BTC address for the next hour. Good luck, and stay safe out there!” Soon after, the identical tweet was posted from the account of Microsoft co-founder Bill Gates’ account. Thereafter, a wave of tweets with the fake promotion was posted from accounts of personalities like Barack Obama, Kanye West, Joe Biden, Mike Bloomberg, and Warren Buffet. Twitter accounts of Apple, Uber, Square’s CashApp, and Coinbase were also hacked with the intent to post similar messages which contained a bitcoin wallet address that directed to the hackers.  

While some of the scam tweets were taken down by Twitter, subsequent tweets followed that read, “Feeling grateful doubling all payments sent to my BTC address! You send $1,000, I send back $2,000! Only doing this for the next 30 minutes.” The BTC address of all the tweets from the hacked accounts was the same including on the tweets by the Cameron and Tyler Winklevoss’ Gemini cryptocurrency exchange. While Gemini claimed that its account was protected by two-factor authentication and the company used a strong password, the account was hacked into by the spammers that earned more than $55,000.

READ | Former US President Barack Obama, Joe Biden In List Of Those Hacked By Bitcoin Scammers