According to their study, an Israeli cybersecurity monitoring group has revealed that hackers stole the email addresses and some other personal data of more than 200 million Twitter users and posted them on an online hacking forum on the dark web.
Alon Gal, the co-founder of Israeli cybersecurity-monitoring firm Hudson Rock, took to LinkedIn and posted a post revealing his firm’s discovery. He added that because of the nature of the hack and the kind of data that was stolen, the breach would, unfortunately, lead to much hacking, targeted phishing, and doxing.
As has been the case with Twitter since Musk took over, the social media platform has neither commented on the report nor responded to inquiries about the breach since that date. It still isn’t clear what action, if any, Twitter has taken to investigate or remediate the issue. However, that may also have to do with Musk’s disbanding all of Twitter’s media relations and communications teams.
Moreover, Musk doesn’t want any current Twitter team member to talk to the press or share any information.
Troy Hunt, creator of breach-notification site Have I Been Pwned, viewed the leaked data and said on Twitter that it seemed “pretty much what it’s been described as.” There were no clues to the identity or location of the hacker or hackers behind the breach. It may have occurred as early as 2021 before Elon Musk took over the company last year.
Claims about the size and scope of the breach initially varied, with early accounts in December saying 400 million email addresses and phone numbers were stolen.
A significant breach at Twitter may interest regulators in the United States of America and Europe. The Data Protection Commission in Ireland, where Twitter has its European headquarters, and the US Federal Trade Commission have been monitoring the Elon Musk-owned company for compliance with European data protection rules and a US consent order, respectively.