According to the website 9to5mac.com, there is said to have been a hack on Twitter. In this way, contact details of 5,4 million Twitter accounts are said to have been lost. In a hacker forum, the data was now offered for just $30.000. However, the authenticity of the data has not been fully confirmed.
A Twitter data breach allowed an attacker to gain access to the contact details of 5,4 million accounts for a hacker. According to 9to5mac.com, Twitter has probably confirmed the vulnerability that allowed the data to be extracted.
The data - which links Twitter handles to phone numbers and email addresses - has now been put up for sale on a hacking forum for $30.000. The background to the hack: A verified Twitter vulnerability from January was exploited by an attacker to allegedly obtain account information from 5,4 million users. While Twitter has since patched the vulnerability, the database allegedly acquired by this exploit is now being sold on a popular hacking forum.
Vulnerability known since January
A vulnerability was reported on HackerOne back in January that allows an attacker to obtain the phone number and/or email address associated with Twitter accounts, even if the user has hidden these fields in the privacy settings. An attacker is now selling the data allegedly obtained from this vulnerability. The post is still live now, with the Twitter database said to be made up of 5,4 million users, which is up for sale. The seller on the hacking forum goes by the username "devil" and claims the dataset contains "Celebrities, to companies, randoms, OGs, etc." Only the owner of the hacking forum has confirmed the authenticity of the attack and probably two samples of the database checked.
More at 9to5mac.com