Close Menu
  • Homepage
  • Local News
  • India
  • World
  • Politics
  • Sports
  • Finance
  • Entertainment
  • Business
  • Technology
  • Health
  • Lifestyle
Facebook X (Twitter) Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
  • DMCA
Facebook X (Twitter) Instagram Pinterest
JHB NewsJHB News
  • Local
  • India
  • World
  • Politics
  • Sports
  • Finance
  • Entertainment
Let’s Fight Corruption
JHB NewsJHB News
Home»Technology»Twitter API security breach exposes 5.4 million users’ data
Technology

Twitter API security breach exposes 5.4 million users’ data

November 29, 2022No Comments4 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Twitter API security breach exposes 5.4 million users' data
Share
Facebook Twitter LinkedIn Pinterest Email

Take a look at the on-demand periods from the Low-Code/No-Code Summit to discover ways to efficiently innovate and obtain effectivity by upskilling and scaling citizen builders. Watch now.


In July this yr, cybercriminals started promoting the person knowledge of greater than 5.4 million Twitter customers on a hacking discussion board after exploiting an API vulnerability disclosed in December 2021. 

Just lately, a hacker launched this info at no cost, simply as different researchers reported a breach affecting thousands and thousands of accounts throughout the EU and U.S. 

In keeping with a blog post from Twitter in August, the exploit enabled hackers to submit e-mail addresses or cellphone numbers to the API to establish which account they had been linked to.  

Whereas Twitter mounted the vulnerability in January this yr, it nonetheless uncovered thousands and thousands of customers’ personal cellphone numbers and e-mail addresses, and highlights that the affect of uncovered APIs might be devastating for contemporary organizations.  

Occasion

Clever Safety Summit

Be taught the crucial position of AI & ML in cybersecurity and business particular case research on December 8. Register in your free cross in the present day.

Register Now

The true affect of API assaults 

The Twitter breach comes amid a wave of API assaults, with Salt Safety reporting that 95% of organizations skilled safety issues in manufacturing APIs over the previous 12 months, and 20% suffered an information breach because of safety gaps in APIs. 

This excessive charge of exploitation matches with Gartner’s prediction that API assaults would turn into the most-frequent assault vector this yr.  

One of many unlucky realities of API assaults is that vulnerabilities in these techniques present entry to unprecedented quantities of information, on this case, the information of 5.4 million customers or extra. 

“As a result of APIs are meant for use by techniques to speak with one another and change large quantities of information — these interfaces signify an alluring goal for malicious actors to abuse,” stated Avishai Avivi, SafeBreach CISO. 

Avivi notes that these vulnerabilities present direct entry to underlying knowledge. 

“Whereas conventional software program vulnerabilities and API vulnerabilities share some widespread traits, they’re completely different at their core. APIs, to an extent, belief the system that’s attempting to connect with them,” Avivi stated. 

This belief is problematic as a result of as soon as an attacker beneficial properties entry to an API, they’ve direct entry to a company’s underlying databases, and all the knowledge contained inside them. 

What’s the risk now? Social engineering 

Probably the most vital risk rising from this breach is social engineering. Utilizing the names and addresses harvested from this breach, it’s doable that cybercriminals will goal customers with e-mail phishing, voice phishing, and smishing scams to try to trick customers into handing over private info and login credentials. 

“With a lot info disclosed, criminals may fairly simply use it to launch convincing social engineering assaults towards customers. This may very well be not solely to focus on their Twitter accounts, but in addition through impersonating different companies similar to on-line purchasing websites, banks and even tax workplaces,” stated Javvad Malik, safety consciousness advocate with KnowBe4. 

Whereas these scams will goal finish customers, organizations and safety groups can present well timed updates to make sure that customers are conscious of the threats they’re almost definitely to counter and easy methods to handle them. 

“Individuals ought to at all times stay looking out for any suspicious communications, particularly the place private or delicate info is requested similar to passwords,” Malik stated. “When unsure, folks ought to contact the alleged service supplier instantly or log onto their account instantly.” 

It’s additionally a good suggestion for safety groups to remind staff to activate two-factor authentication on their private accounts to scale back the probability of unauthorized logins. 



Source link

API breach data Exposes million security Twitter users
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Samsung Galaxy S25 Edge Review: Design You’ll Pay a Price for

May 30, 2025

Kim Kardashian’s New Security Secrets Revealed

May 30, 2025

Perplexity unveils Labs, a new tool for creating web apps, spreadsheets, and dashboards | Technology News

May 30, 2025

Over 184 million passwords from Apple, Google, Facebook, and Microsoft leaked online, claims researcher | Technology News

May 30, 2025
Add A Comment
Leave A Reply Cancel Reply

Editors Picks

What a federal trade court block on Trump tariffs means for consumers

May 30, 2025

IndiGo inks pact with BIAL to set up major MRO facility at Bengaluru airport | Bangalore News

May 30, 2025

J&K Police book AAP’s lone legislator for ‘threatening’ woman doctor in Doda | India News

May 30, 2025

‘My avarice for money stopped me…’: Kamal Haasan admits to chasing wealth at the cost of learning; how success can stunt personal growth | Lifestyle News

May 30, 2025
Popular Post

Fantasy Cricket Tips, Today’s Playing 11 and Pitch Report for Indian Premier League 2025, Match 29

Aaftab sent to 13-day judicial custody; narco test likely on Monday, say police

Lawyer for Decorated Navy Vet Vows to Go to Trial

Subscribe to Updates

Get the latest news from JHB News about Bangalore, Worlds, Entertainment and more.

JHB News
Facebook X (Twitter) Instagram Pinterest
  • Contact
  • Privacy Policy
  • Terms & Conditions
  • DMCA
© 2025 Jhb.news - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.