200 data leak Millions of Twitter users Posted on a hacker forum, it can be purchased for $2 (10.45 BRL, at current exchange rates). Along with the data, the hacker posted a small sample of information, the authenticity of which was confirmed, at least in part, by specialists from the Bleeping Computer website.
The list, which contains a username, email address and phone number, was compiled by exploiting a vulnerability in the social network’s API (an interface that allows a platform to connect to third-party apps).
With the hack, criminals can enter an email or cell phone and see if the information is associated with a Twitter profile. It was enough for the attackers to download the user’s profile name and complete the list to associate the profile name with email and phone.
The vulnerability has been known since 2021 and was patched in January 2022. A year later, attackers began leaking or selling the data obtained from the breach.
According to Bleeping Computer, a list with data from 5.4 million users was sold for $30,000 (R$156,000) in July 2022, even posted for free on leak forums.
If you have a Twitter profile and would like to see if your name is on the list, simply go to the site I’ve been pwnedIt was created by security expert Troy Hunt.
After entering your email address, the site will tell you if your information has been leaked.
Read below: More privacy? Learn how to make your Twitter profile more difficult to find
“Musicaholic. Thinker. Extreme travel trailblazer. Communicator. Total creator. Twitter enthusiast.”