Sony Q3 Profit Jumps on Gaming and Image Sensors, Full-Year Outlook Raised 
Amazon Stock Rebounds After Earnings as $200B Capex Plan Sparks AI Spending Debate 
Washington Post Publisher Will Lewis Steps Down After Layoffs 
Baidu Approves $5 Billion Share Buyback and Plans First-Ever Dividend in 2026 
SpaceX Pushes for Early Stock Index Inclusion Ahead of Potential Record-Breaking IPO 
Nasdaq Proposes Fast-Track Rule to Accelerate Index Inclusion for Major New Listings 
CK Hutchison Launches Arbitration After Panama Court Revokes Canal Port Licences 
SoftBank Shares Slide After Arm Earnings Miss Fuels Tech Stock Sell-Off 
SpaceX Prioritizes Moon Mission Before Mars as Starship Development Accelerates 
Missouri Judge Dismisses Lawsuit Challenging Starbucks’ Diversity and Inclusion Policies 
Elon Musk’s SpaceX Acquires xAI in Historic Deal Uniting Space and Artificial Intelligence 
Global PC Makers Eye Chinese Memory Chip Suppliers Amid Ongoing Supply Crunch 
American Airlines CEO to Meet Pilots Union Amid Storm Response and Financial Concerns 
Weight-Loss Drug Ads Take Over the Super Bowl as Pharma Embraces Direct-to-Consumer Marketing 
Anthropic Eyes $350 Billion Valuation as AI Funding and Share Sale Accelerate 
OpenAI Expands Enterprise AI Strategy With Major Hiring Push Ahead of New Business Offering 
AMD Shares Slide Despite Earnings Beat as Cautious Revenue Outlook Weighs on Stock 
Twitter recently confirmed that its systems suffered a security breach that primarily affected “pseudonymous accounts.” The exploit, first found last January, reportedly allowed the hacker to figure out if an email address or phone number is linked to a Twitter account.
Twitter hack may have targeted secret accounts
The said security vulnerability was reported through Twitter’s bug bounty program last January, the social media company said in a blog post last week. Twitter then updated its code last June in response to address the security issue but noted that it found “no evidence” at the time that the vulnerability was exploited.
That changed, however, when a “press report” revealed that a hacker possibly exploited the vulnerability. Twitter was likely referring to Bleeping Computer’s report last July 22 that revealed a hacker known as “devil” was selling the data collected through the exploit for $30,000.
In devil’s original post, the hacker claimed it collected data from a total of 5,485,636 Twitter users, including “Celebrities, to Companies, randoms, OGs, etc.” Bleeping Computer said in its July report that it was able to verify the accuracy of a “small sample of data” that the hacker presented. It had no way of knowing, though, if the rest of the claimed data from 5.4 million users are all real.
In Twitter’s statement last week, the company implied that the security impacted only “some accounts.” But it emphasized the incident's potential effect's on users with “pseudonymous accounts” or secret accounts. This corroborated what the hacker previously told Bleeping Computer, claiming that they were able to input email addresses and phone numbers to figure out if it is linked to a Twitter account and to identify its Twitter ID.
Twitter’s advice to keep accounts protected
Due to how the exploit worked, Twitter advised users with pseudonymous accounts to avoid using public email addresses and phone numbers. The company said there was no password exposed in the incident, but it still encouraged users to enable two-factor authentication.
Twitter will directly notify affected users. But the social media company added, “We are publishing this update because we aren’t able to confirm every account that was potentially impacted, and are particularly mindful of people with pseudonymous accounts who can be targeted by state or other actors.”
Photo by Akshar Dave on Unsplash
