More than a million French people are affected by a leak of information from Twitter


The hackers behind a Twitter data leak concealed many files that have just been revealed. These contain the telephone numbers of nearly 1.4 million French users.

New personal data from Twitter is in circulation. This observation was made on November 24 by Chad Loder, a Twitter account specializing in cybersecurity, then confirmed by the American media Bleeping Computer. Specifically, a database of 5.4 million users leaked last July. This had been widely publicized. We learn today that not all files have been put on sale: information on 1.4 million Twitter profiles was shared privately between several hackers.

Unfortunately for French users, it would be data concerning only France according to Bleeping computer – mainly telephone numbers. On Mastodon, Chad Loder posted a sample with callsigns +33 (representing France). The numbers have been verified and they are indeed French citizens.

An excerpt from the leak containing French phone numbers. // Source: Chad Loder

The owner of a famous hacker forum told Bleeping Computer that he was responsible for exploiting the flaw — originally obtained from another hacker called Devil — and transferring user data. The original leak is now freely available on the platform. The elements concerning these 1.4 million users are still in the hands of several criminals. It is currently impossible to check whether his number is part of the leaked.

This data can potentially be used for targeted phishing attacks to steal login credentials, so it is essential to carefully examine any email or message claiming to be from Twitter and read it with great caution.

The forum member at the origin of the leak specifies that the data concerning the 1.4 million users is not included in the online database.  // Source: Numerama
The forum member who originated the leaked clarifies that the data concerning the 1.4 million users is not included in the online database. // Source: Numerama

No reaction from Twitter

The social network did not react to these revelations. And we wonder if there is still someone on the premises to manage this leak or even communicate about it.

In December 2021, the hacker had managed to take advantage of a flaw to extract data thanks to a bot which digs into the website, we speak of scraping to designate this method. A researcher had alerted Twitter in January: “ Vulnerability allows any party to retrieve a Twitter ID by submitting a phone number/email even if the user in question has blocked this search in the settings confidentiality “, describes the expert under the pseudonym Zhirinovskiy.

The flaw has since been corrected, but the data is still circulating and this new file raises fears of other potential leaks in the coming months.

For further

Stealers wreak havoc.  // Source: Yura Fresh / Unsplash

The latest information about Twitter



Source link -100