California: A cyber attacker exploited a vulnerability in Twitter to gain access to the contact details of 5.4 million Twitter accounts.
Data exposed in the event of an attack includes Twitter handles linked to phone numbers and email addresses. The attack has also exposed the data of users who have blocked Twitter from being searched in this way. The attacker posted a sample of this data on a hacking forum and offered to sell the entire database for $30,000.
.jpg)
The owner of Breach Forums confirmed the leaked data and said that all of the data was derived from the January Vulnerability Report.
Read more: Twitter starts two-account-one-tweet trial
Yeekers, on the other hand, have claimed that their stolen data includes data from celebrities to companies.
According to a detailed post by HackerOne user Zhirinovsky in January, the issue exploits a bug in Twitter's Android app and the Twitter authorization process and can capture any user's Twitter ID. that includes a phone number or email. In the post, the Twitter ID was described as almost equivalent to the username of an account.
Five days after Zhirinovsky's report, Twitter staff awarded him $5,040, citing the issue as a 'legitimate security issue'.
.jpg&description=Stolen information of 5.4 million Twitter users offered for sale){kind=link}