Twitter hacked with 'happiness'
Friday, January 9, 2009
A weak password used by a Twitter support staff member allowed a hacker to gain control of various celebrity accounts by using an automated password-guesser.
The hacker is reportedly an 18-year- old who goes by the online name GMZ and said he noticed a Twitter user named "Crystal" as a frequent follower of numerous accounts in an IM interview with the Wired.com blog Threat Level.
GMZ agreed to the interview after being implicated by other hackers online, according to the blog.
The hacker began a dictionary attack last Sunday by using a self-authored tool which automatically tried English words, Treat Level reports. By 11 a.m. Eastern Time the next day, he was in Crystal's account, thanks to the password of "happiness."
By hacking the Twitter staffer's account, GMZ could reset passwords through the administrative panel, according to the post. Though he said he didn't personally use the hacked accounts, he did post a message to Digital gangster, a forum for hackers, offering access to the accounts by request.
"I feel it's another case of administrators not putting forth effort toward one of the most obvious and overused security flaws. I'm sure they find it difficult to admit it," wrote GMZ in the interview.
Related News:
The Pirate Bay hit by DDOS attacks on news of sale - 7.2.2009
Global Gaming Factory's announcement Tuesday that it plans to purchase the file-swapping BitTorrent site The Pirate Bay for $7.8 million has set off distributed denial-of-service (DDOS) attacks on the Swedish company's website, likely from disgruntled members who have cast the founders as sell-outs.
Mozilla will issue security fixes for Firefox 3.5 - 7.2.2009
Mozilla, which just released the latest version of its Firefox browser on Tuesday, is already planning to release web security fixes for bugs in Firefox 3.5, according to Computerworld.com.
Online security fears affect consumers more than economy - 7.1.2009
Seventy-two percent of consumers said the economy has not changed the way they shop online, but nearly half of consumers have terminated an online order due to security fears, according to a new survey by web security vendor McAfee.
Cyber vigilante arrested for DDOS attacks on news sites - 7.1.2009
Federal authorities have charged Bruce Raisley, of Monaca, Pennsylvania, in connection with a series of distributed denial-of-service (DDOS) attacks on news websites hosting articles that detailed embarrassing facts about his online relationship with a man pretending to be a woman.
Web security report: Q2 spam averaged 88 percent - 6.30.2009
Spam levels for Q2 2009 averaged 88.7 percent compared with 74.5 percent for Q1 2009, according to the June 2009 MessageLabs Intelligence Report from security vendor Symantec. The global ratio of spam was 90.4 percent in June, reflecting no change since May.
|
