Hackers Take Over Jack Dorsey’s Twitter Account

The Twitter account of Jack Dorsey, co-founder and chief executive of Twitter, was briefly taken over by hackers over the weekend.

The attackers apparently used a SIM-swapping attack to access the account, security experts said.

Credit for the hack was taken by a group calling itself Chuckling Squad.

Dorsey’s account tweeted racist and offensive remarks for about 15 minutes late on Friday.

SIM swap

Twitter said a security lapse at an unnamed mobile operator allowed the attack to take place, and said its own systems remained secure.

“The phone number associated with the account was compromised due to a security oversight by the mobile provider,” Twitter stated.

“This allowed an unauthorised person to compose and send tweets via text message from the phone number. That issue is now resolved.”

Security journalist Brian Krebs said it appeared that Dorsey had been targeted by a SIM-swapping attack, and an unnamed source confirmed to the BBC that this was what had occurred.

SIM-swapping involves an attacker tricking a mobile operator into transferring a phone number to a SIM card under the attacker’s control.

In this case, the attackers apparently hijacked Dorsey’s phone number, and then used it to post messages directly to Twitter via text message.

Twitter launched in the days before smartphone apps, and still allows messages to be posted via text message.

Embarrassment

The hackers’ messages, some of which were posted directly and others of which were retweeted, included racist remarks and a bomb threat.  The account has more than four million followers.

A chat channel on the website Discord was also apparently set up by the hackers to joke about the incident.

The channel has now been shut down and the offending tweets removed.  Some of the Twitter accounts named in the tweets and retweets were suspended over the weekend.

Chuckling Squad has taken credit for a number of recent hacks on Twitter accounts belonging to online personalities, including vloggers and YouTubers.

The incident comes at a time when Twitter and other social media companies are under fire over a range of privacy and security issues.

It’s an embarrassment for the service, which is used by prominent world leaders including the US president.

Matthew Broersma

Matt Broersma is a long standing tech freelance, who has worked for Ziff-Davis, ZDnet and other leading publications

Recent Posts

Former Cortana Boss Javier Soltero Joins Google

'Hey Cortana... please forward my email to Google', as former Microsoft man joins search engine giant

2 hours ago

Jeff Bezos’s Blue Origin Partners Lockheed Martin For Moon Lander

Moon tourists? Space company of Amazon boss signs deals with multiple companies for moon landers

3 hours ago

Equifax Used Default ‘Admin’ Password, Lawsuit Alleges

Lawsuit alleges Equifax failed to take the most basic security precautions that resulted in highly damaging breach in 2017

4 hours ago

Bletchley Park Could Host Institute Of Technology

Plans submitted for tech teaching centre for 1,100 students on historic Bletchley Park site

5 hours ago

Avast Confirms “Extremely Sophisticated” Hack

State sponsored actor? Security vendor admits it has been targetted by sophisticated cyberespionage campaign

6 hours ago

NordVPN Confirms Hack After Data Centre Mistake

Panama-based VPN provider confirms it was hacked after Finnish data centre provider left server unsecured

9 hours ago