Twitter Coordinated Attack

Note: This is a high-level overview of the recent events concerning the Twitter account hack on March 6, 2021
On March 6, around 15k of our Twitter account users (possibly more) — with thousands of combined followers — received unauthorized tweets promoting a scam to swap their Kebab tokens for another token at a 1:1 ratio. The infiltrator asked the community to purchase the scam tokens in BNB. Afterward, he infiltrated our Telegram Channel and began posting the tweets.

So how did the hacker get access to the internal tool?

As we now know from Twitter and various other sources, the attacker had infiltrated Twitter admin panel access to go through a regular password reset flow to reset the password on the account, update the email address, and then do a password reset to gain access to the account. Sadly, all notifications went to the new email address. The hacker confiscated one of our community angels’ Telegram account to send unauthorized Tweets. The attacker relied on a group of scammers to infiltrate our Telegram channel to legitimize the attack after failing to pin the unauthorized tweets. Our security analyst received multiple Telegram alerts and acted swiftly to revoke the attackers’ title since our admins are the only ones authorized to pin official announcements. The centralized structure of Twitter failed to help us eliminate the threat. Since we were aware of the security flaws in Twitter, we acted fast to restore our account while we continued to update our community on the incident.

The attacker didn’t use “any of the high-tech or sophisticated techniques used in cyberattacks. Instead, the attacker accessed our internal Twitter tools even though Twitter claims it has strengthened its internal security with new tools. It is not the first time in the history of Twitter to see these types of organized attacks. As everyone knows, mass Twitter hacks turned the accounts of world leaders and billionaires into a hub to promote scams. Unfortunately, Twitter’s centralized nature allows the attacker to interact with the settings to gain access to the account without intervention from the Twitter support team.

We are grateful for our community’s support to alert other users not to fall for the scam and our cybersecurity experts to restore access to our Twitter and Medium accounts. The team worked incessantly to recover the stolen funds, but we cannot track its source due to the scam’s decentralized nature. Our communication with our community is transparent, and our roadmap is apparent in our previous communications with our investors. We ask everyone to be careful not to interact with unofficial sources unless our admins authorize it.
We are actively working on releasing our planned burning mechanism, new UI, interactive roadmap, and other exciting updates. Stay Tuned!

As we have stated before, whatever bogs down our progress will continue to put us on the path to success. From where they stand, our path might seem easier, but the real question is: Can they see how far we have come?

Feel free to comment and give your opinion. Don’t hesitate to ask us for the next Medium’s post subject.

If there’s anything you’d like to see or if you have questions, message us at any time.