A previously identified vulnerability in Twitter’s databases has now allowed hackers access to the personal information of 5.4 million users. According to reports, this data is up for sale for $30,000. We look at how stolen personal information can lead to multistage cryptocurrency scams.
HackerOne user “zhirinovskiy” submitted the bug report, which explains how an attacker can obtain the phone number and/or email address associated with Twitter accounts even if the user has hidden these fields in the privacy settings.
Interestingly, Twitter staff acknowledged this as a “valid security issue” and promised to look into it further before awarding user zhirinovskiy a $5,040 bounty.
The hacker known as “devil” is selling the Twitter database on Breached Forums, which may contain information from “Celebrities, to Companies, randoms, OGs, etc.”
The Crypto Times has previously reported on several warnings issued by the Federal Trade Commission (FTC) regarding cryptocurrency scams, including how such scammers target the LGBTQIA+ community and how over 46,000 people have reported losing more than $1 billion since 2021.
Crypto scammers and hackers frequently attempt to obtain information that allows them access to a digital wallet or other types of private data.
Also Read: British Military’s Social Media Account Hacked to Advertise Crypto scams
Group-IB, a Singapore-based intelligence firm, recently investigated an attack that exposed thousands of people’s personal information and was used to carry out a targeted multistage Bitcoin scam.
The hackers used the victims’ phone numbers and emails to redirect them to websites pretending to be well-known media outlets.
“Companies and celebrities whose names were hijacked by fraudsters suffer reputational damage and face diminished customer trust,” Ilia Rozhnov, the Asia Pacific head of Group-brand IB’s protection team said.
The investigation showed that the same fraudulent investment platform was operating under a number of different names. These include Blockchain Banking, Bitcoin Supreme, Bitcoin Rejoin, and Crypto Cash.
