Twitter says hackers compromise 250K accounts

 
No Author Published: February 2, 2013    Comment on this article Leave a comment

photo - FILE - In this Sept. 14, 2010 file photo, Twitter CEO Evan Williams makes a presentation about changes to the social network at Twitter headquarters in San Francisco, In the latest online attack, Twitter says hackers may have gained access to information on 250,000 of its more than 200 million active users, Friday, Feb. 1, 2013. (AP Photo/Marcio Jose Sanchez, File)
FILE - In this Sept. 14, 2010 file photo, Twitter CEO Evan Williams makes a presentation about changes to the social network at Twitter headquarters in San Francisco, In the latest online attack, Twitter says hackers may have gained access to information on 250,000 of its more than 200 million active users, Friday, Feb. 1, 2013. (AP Photo/Marcio Jose Sanchez, File)

Multimedia

One expert said that the Twitter hack probably happened after an employee's home or work computer was compromised through vulnerabilities in Java, a commonly used computing language whose weaknesses have been well publicized.

Ashkan Soltani, an independent privacy and security researcher, said such a move would give attackers "a toehold" in Twitter's internal network, potentially allowing them either to sniff out user information as it traveled across the company's system or break into specific areas, such as the authentication servers that process users' passwords.

In a telephone interview Friday, Soltani said that the relatively small number of users affected suggested either that attackers weren't on the network long or that they were only able to compromise a subset of the company's servers.

Twitter is generally used to broadcast messages to the public, so the hacking might not immediately have yielded any important secrets. But the stolen credentials could be used to eavesdrop on private messages or track which Internet address a user is posting from.

That might be useful, for example, for an authoritarian regime trying to keep tabs on a journalist's movements.

"More realistically, someone could use that as an entry point into another service," Soltani said, noting that since few people bother using different passwords for different services, a password stolen from Twitter might be just as handy for reading a journalist's emails.

___

AP reporters Raphael Satter in London and Didi Tang in Beijing contributed to this report.

Page 2 of 2



If you prefer your thoughts to appear in The Oklahoman's Opinion section, we encourage you to submit a letter to the editor.

Ads by Yahoo!

Raspberry Pill Melts Fat?
Celebrity Doctor Exposes One Weird Fruit That Melts Your Fat Fast...
PureRaspberryKetone.com
New Rule in WASHINGTON:
(MAY 2013): If You Pay For Car Insurance You Better Read This...
www.ConsumerFinanceDaily.com

Business Photo Galleriesview all