Reuters.com reported that Twitter said “…the incident targeted a small number of employees through a phone “spear-phishing”…targeted about 130 accounts, tweeted from 45, accessed inbox of 36, and were able to download Twitter data from seven.” The July 30, 2020 article entitled “Twitter says spear-phishing attack on employees led to breach” included these comments:
Attackers also targeted specific employees who had access to account support tools, Twitter said here adding that it restricted access to its internal tools and systems ever since the incident occurred.
Hackers had accessed Twitter’s internal systems on July 15 to hijack some of the platform’s top voices including U.S. presidential candidate Joe Biden, reality TV star Kim Kardashian, former U.S. President Barack Obama and billionaire Elon Musk and used them to solicit digital currency.
Publicly available blockchain records show the apparent scammers received more than $100,000 worth of cryptocurrency.
Obviously, we all need to against spear-phising!