Insinia Security hacks celebrity Twitter accounts to expose flaws

Updated: Dec 29, 2018, 20:10 IST | IANS

To take control of the accounts, the researchers at the company used fake SMS verification that made it appear as if they belonged to the account owners, said the report

Insinia Security hacks celebrity Twitter accounts to expose flaws
Representational Image

In a bid to highlight security flaws in Twitter, Britain-based Insinia Security temporarily hijacked several celebrity and journalist accounts active on the micro-blogging site.

According to a report in The Telegraph, messages appeared on several celebrity and journalist accounts on Thursday with the words: "This account has been temporarily hijacked by INSINIA SECURITY."

To take control of the accounts, the researchers at the company used fake SMS verification that made it appear as if they belonged to the account owners, said the report.

Insinia said it successfully hijacked the accounts of a number of celebrities, including Eamonn Holmes, Louis Theroux, Simon Calder and Saira Khan among others.

A simple method allowed it to send tweets, direct messages, retweet and like tweets, follow and unfollow people, according to the company which warned that the vulnerability could be easily exploited by nation states, hackers and organised crime groups.

The vulnerability could be used to "spread fake news and disinformation via influential celebrities and journalists", Insignia warned in a blog post.

While Twitter has not yet officially reacted to the threat, Insinia recommended that users should meanwhile remove their phone number from the Twitter account.

"Twitter should completely remove this functionality (SMS verification) as users rely on their phone added to account for two-factor authentication," Insinia said.

Catch up on all the latest Crime, National, International and Hatke news here. Also, download the new mid-day Android and iOS apps to get the latest updates

This story has been sourced from a third party syndicated feed, agencies. Except for the change in the headline, the story has been provided "AS-IS," "AS AVAILABLE, without any verification or editing from our side. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever.

The village no woman wants to get married into!

This website uses cookie or similar technologies, to enhance your browsing experience and provide personalised recommendations. By continuing to use our website, you agree to our Privacy Policy and Cookie Policy. OK