Twitter says leaked user data wasn’t stolen from its systems

Share to friends
Listen to this article

The leak of over 200 million email addresses belonging to Twitter users just isn’t a results of an inner vulnerability being abused, the corporate has claimed.

In an update posted to the corporate web site, the microblogging platform addressed the speculations that the risk actors abused the same vulnerability that was patched in January 2022, which hackers used to share particulars on more than 5 million Twitter users.

“In response to recent media reports of Twitter users’ data being sold online, we conducted a thorough investigation and there is no evidence that data recently being sold was obtained by exploiting a vulnerability of Twitter systems,” the corporate said. “[The] 200 million dataset could not be correlated with the previously reported incident or any data originating from an exploitation of Twitter systems,” it added.

Data taken elsewhere

“None of the datasets analyzed contained passwords or information that could lead to passwords being compromised.” Instead, Twitter believes the leak is an amalgamation of publicly out there databases gathered elsewhere, possible by means of separate leaks. “The information is probably going a group of information already publicly out there on-line by means of completely different sources,” it claims. 

Some specialists are questioning Twitter’s arguments, asking why the corporate didn’t explain how the leaked information was precisely linked to email addresses related to people’s Twitter accounts. 

Read more

> Here are the very best endpoint safety software program round

> Millions of Twitter users have had their information leaked on-line

> Another big Twitter user database has been leaked on-line

The microblogging platform said it reached out to related information safety authorities and different organizations to provide more particulars concerning the incident.

In late November 2022, researchers found a significant information dump of delicate id information, claiming it was in all probability because of a vulnerability that allowed anybody to cross-check if an email deal with or a cellphone quantity was related to a Twitter account, and if that’s the case – which one. 

Millions of users from the US and EU had been uncovered, and the media managed to substantiate the authenticity of a minimum of a number of the information posted to the darkish net. 

  • Check out the very best antivirus applications right now

Via: BleepingComputer