Skip to main content

LATEST UPDATES: Tracking COVID-19 | Vaccines | Racial Justice

We’re Embarrassed’: Twitter Says High-Profile Hack Hit 130 Users

Photo caption:

Photo by Leon Neal Getty Images

Twitter says it is "embarrassed" about the cybersecurity breach earlier this week that targeted several of its most prominent users.

Twitter says a total of 130 accounts were hacked in some fashion during a cybersecurity breach on Wednesday that affected some of its most prominent users, including Joe Biden and Kanye West. In a blog post updating the situation as of Friday night, the company explained that the perpetrators downloaded personal data from up to eight of 130 compromised accounts.

Twitter officials did not specify which eight accounts were affected — though they said that "none of the eight were verified accounts," by which the company means none of them was the official account of a public figure.

"The most important question for people who use Twitter is likely — did the attackers see any of my private information?" the company said in its update Friday. "For the vast majority of people, we believe the answer is, no."

But the company went on to say that hackers were able to view email addresses, phone numbers and, in some cases, "additional information."

Along with West and the presumptive Democratic presidential nominee, the accounts of former President Barack Obama and billionaire businessmen Elon Musk and Jeff Bezos — among others — all tried to coax Bitcoin payments from followers with a fake pledge to double their money in return.

Even major companies such as Uber and Apple were co-opted into the scam.

Within hours, Twitter had removed the posts and even temporarily blocked verified accounts from tweeting or having their passwords reset.

Twitter officials now say they have a better idea of what happened in the first place. In a lengthy statement, the company laid out what its probe has turned up so far:

"The attackers successfully manipulated a small number of employees and used their credentials to access Twitter's internal systems, including getting through our two-factor protections. As of now, we know that they accessed tools only available to our internal support teams to target 130 Twitter accounts. For 45 of those accounts, the attackers were able to initiate a password reset, login to the account, and send Tweets."

In some cases, company officials added, the as-yet unidentified attackers tried to sell usernames. The company said it is "working with law enforcement" and will continue its investigation into the incident.

"We're acutely aware of our responsibilities to the people who use our service and to society more generally," the company said. "We're embarrassed, we're disappointed, and more than anything, we're sorry."

Copyright 2020 NPR. To see more, visit https://www.npr.org.

FEATURED PODCAST

San Diego News Now podcast branding

San Diego news; when you want it, where you want it. Get local stories on politics, education, health, environment, the border and more. New episodes are ready weekday mornings. Hosted by Anica Colbert and produced by KPBS, San Diego and the Imperial County's NPR and PBS station.

  • Need help keeping up with the news that matters most? Get the day's top news — ranging from local to international — straight to your inbox each weekday morning.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Curious San Diego banner

Want more KPBS news?
Find us on Twitter and Facebook, or sign up for our newsletters.

To view PDF documents, Download Acrobat Reader.