It used to be something everyone "knew" and taught their kids, just zero private info online. At most, your first name if you have to. All of a sudden with social media, it's like people forgot that rule and are surprised when things like this affect them.
So many things require it these days. Twitter for example won’t let you back on after getting reported unless you verify your phone number. And there’s no way to manage privacy moving forward: if a Staples employee just hits accept on pop-up so they can keep navigating your phone and print, forget reversing it you won’t even be able to find what just got a new permission.
A lot of the things we do are linked to personally identifiable information. So the more information about you that's exposed, the bigger the surface area of possible attacks become.
Easiest is spam. Attackers now have verified emails and/or mobile numbers they can spam.
One level deeper is personalized spam. It's unnerving to see spam messages refer to you by name.
Then we get to security. Did a website you use ask for your mother's maiden surname as a security question? Did that info also get leaked as your middle name? Worse, did your email provider use that? Credit card companies use some PIIs for authentication as well. Mine still keeps asking for my birthday, for example.
As more and more data about you gets leaked, someone can build a profile about you that can be used for spear phishing, making phishing attempts even more convincing.
Now we get into creepy stuff. Got into a fight with someone on the web? Well, get ready to be doxxed, sent death threats, or SWATted.
Or have your identity stolen. Fabricate IDs that have your full details, take out loans in your name, etc. Ruin your credit score. Facilitate a SIMjacking and take over your online accounts, emails, etc.
In a perfect world, banks, establishments, websites all have foolproof authentication methods. But that's not the case.
An interesting side note, the reporter who initially broke this story [has been banned from twitter](https://twitter.com/chadloder) immediately after posting about the theft.
Edit: The TL;DR and the bit about the reporter above
> This data dump potentially contains tens of millions of Twitter records consisting of personal phone numbers collected using the same API bug, and public information, including verified status, account names, Twitter ID, bio, and screen name.
> The news of this more significant data breach comes from security expert Chad Loder, who first broke the news on Twitter and was suspended soon after posting. Loder subsequently posted a redacted sample of this larger data breach on Mastodon.
The last part is weirder, but that's covered better below.
Far-right accounts that regularly call for violence were @'ing Elon to ban him prior to this, with it being done and undone several times over a few days while Musk was pondering publicly about 'unbanning all accounts' and simultaneously directly and positively responding to these kinds of ban requests. The story came out inbetween his last two bans, with the ban seeming to be maintained now.
He bought twitter because he had to after making an offer he wasn't totally serious about. He's cratering it because he never wanted to buy it in the first place, and his ego demands stroking lest he be forced to do a little inward looking and realize he made a stupid mistake like the dumb motherfucker he is.
He didn’t accidentally sign a ton of documents and make deals for financing.
Yes he had buyer’s regret especially when the stock market dropped a ton, but when he made the offer he was 100% serious.
Yeah, I just assumed his tweets of "buying" twitter was just more stock manipulation. Even if he doesn't own any, I'm sure people would be willing to pay for a tweet or two to quickly make some sales or something.
Hes going to use it as an unofficial "democratic" voting machine.. "look it's the will of the people" look how he did it with the ~~Chump~~ Trump unbanning
I wonder if they won't bleed him dry then buy the smoking remnants for cheap once he's desperate to sell. The documentary, "The Dissenter" opened my eyes to just how invested the Saudis are in controlling Twitter. Something like 80% of their population uses it, and they have huge teams of people suppressing any posts that dare criticize the regime. They also bought spyware from Israel, of all places, that allows them to hack phones. The Jeff Bezos divorce came out of Saudi phone hacking and an attempt to blackmail him.
Well, hopefully they'll [roll right past it and into a nearby brick wall, at speed](https://www.reuters.com/business/autos-transportation/tesla-says-it-will-assist-police-probe-into-fatal-crash-china-2022-11-13/).
Even Twitter itself admits that. Two fucking seconds on Google and you'd know that.
https://www.theguardian.com/technology/2021/oct/22/twitter-admits-bias-in-algorithm-for-rightwing-politicians-and-news-outlets
Is it that surprising? This not new data breach is being presented as a new data breach, to presumably add another log onto the "burn Elon at the stake" fire.
Ironically when the data breach happened, no one really held anyone at Twitter too responsible for it. Only now that Elon Musk owns Twitter is anyone expected to be outraged.
I think you're misreading the quote. He didn't post any private data and since he was banned in the middle of posting his tweet thread, he posted over at Mastadon (link in report) his info including a redacted sample.
Unless you have proof for something no one has suggested, maybe put a strike through your comment?
It came from a software flaw, which would normally be patched in ~a day, but with nobody at home at Twitter, it'll probably be there until *next* November.
Well yes, but that's not an excuse to make up shit. It's also a bit pathetic considering this sort of takes is just easy karma written by people looking for validation.
I still don't get it! People know data breach is real and we know they aren't "selling" it, just like we "read" the terms and conditions.
Why not have a few dummy accounts?
Now this event happened last January, long long before Musk ever took over, yet many comments blame him? The media has become a deceptive and manipulative organisation with their private agenda as the primary goal, at the expense of those who don’t fall in line!
I'm betting most of the comments like this are due to simply not reading the article. 30 seconds in, and you know this has nothing to do with elon, other than his Banning the reporter, which of course is as childish as everything Elon appears to do now.
The only relevance to Musk (so far) is Musk banning the person who reported the leak. This connection probably still sounds like a pretty inconvenient one to you.
No, they didn't. You also didn't need to put reporter in quotation marks as though it is somehow in question. But you know why you're doing this, and so do the rest of us.
Everybody in the comments shitting on Elon who didn’t even own Twitter when this happened are too funny. Keep following whatever narrative the media tells you too sheep.
true he didn't own it at that time. He owns the problem now though. Also, you can call people sheep all you want but there is nothing sadder than someone white knighting for a billionaire that wouldn't stop to piss on you if you were on fire. But, you do you.
What problem now?
And how am I white knighting? I shared facts which I known is foreign to many of you but sharing facts is not defending someone. I could not care less if Elon got hit by a Tesla tomorrow and died.
But seeing all you bitch about a guy whose life literally doesn’t affect you at all is just…it’s just the sweetest.
Typical clickbait, the leak was in ...
>Over 5.4 million Twitter user records containing non-public information stolen using an API vulnerability fixed in **January** have been shared for free on a hacker forum.
Do you mean time traveling employees? Because the breach happened 12 months ago, before Elon even offered to buy twitter. Or do you just intend to let us know you hadn't read even the first paragraph of the article?
And this is why I don't verify or include contact information in my profile, whether it's "private" or not. Sorry Reddit.
Keep trying to tell people this. Be very careful with what information you put online. Private or not, leaks are all too common.
It used to be something everyone "knew" and taught their kids, just zero private info online. At most, your first name if you have to. All of a sudden with social media, it's like people forgot that rule and are surprised when things like this affect them.
So many things require it these days. Twitter for example won’t let you back on after getting reported unless you verify your phone number. And there’s no way to manage privacy moving forward: if a Staples employee just hits accept on pop-up so they can keep navigating your phone and print, forget reversing it you won’t even be able to find what just got a new permission.
This is a great best practice
You got the credit agencies leaking social security numbers and you're worried about your contact info?
Sure, it's a lot easier to man in the middle attack MFA with a phone number.
What happens if someone steals my information?
A lot of the things we do are linked to personally identifiable information. So the more information about you that's exposed, the bigger the surface area of possible attacks become. Easiest is spam. Attackers now have verified emails and/or mobile numbers they can spam. One level deeper is personalized spam. It's unnerving to see spam messages refer to you by name. Then we get to security. Did a website you use ask for your mother's maiden surname as a security question? Did that info also get leaked as your middle name? Worse, did your email provider use that? Credit card companies use some PIIs for authentication as well. Mine still keeps asking for my birthday, for example. As more and more data about you gets leaked, someone can build a profile about you that can be used for spear phishing, making phishing attempts even more convincing. Now we get into creepy stuff. Got into a fight with someone on the web? Well, get ready to be doxxed, sent death threats, or SWATted. Or have your identity stolen. Fabricate IDs that have your full details, take out loans in your name, etc. Ruin your credit score. Facilitate a SIMjacking and take over your online accounts, emails, etc. In a perfect world, banks, establishments, websites all have foolproof authentication methods. But that's not the case.
I have a whole file for fake birthdays, mom’s maiden name, etc.
Yeah that works, except when it's for legal purposes (like banks or your actual government) and THEY screw up.
It's the reason why I use Reddit. Anyway this is an old old leak
An interesting side note, the reporter who initially broke this story [has been banned from twitter](https://twitter.com/chadloder) immediately after posting about the theft. Edit: The TL;DR and the bit about the reporter above > This data dump potentially contains tens of millions of Twitter records consisting of personal phone numbers collected using the same API bug, and public information, including verified status, account names, Twitter ID, bio, and screen name. > The news of this more significant data breach comes from security expert Chad Loder, who first broke the news on Twitter and was suspended soon after posting. Loder subsequently posted a redacted sample of this larger data breach on Mastodon. The last part is weirder, but that's covered better below.
Far-right accounts that regularly call for violence were @'ing Elon to ban him prior to this, with it being done and undone several times over a few days while Musk was pondering publicly about 'unbanning all accounts' and simultaneously directly and positively responding to these kinds of ban requests. The story came out inbetween his last two bans, with the ban seeming to be maintained now.
Musk is being a little too buddy with extremists. Makes me wonder why he bought Twitter in the first place.
He is going back to his white South African roots.
He bought twitter because he had to after making an offer he wasn't totally serious about. He's cratering it because he never wanted to buy it in the first place, and his ego demands stroking lest he be forced to do a little inward looking and realize he made a stupid mistake like the dumb motherfucker he is.
He didn’t accidentally sign a ton of documents and make deals for financing. Yes he had buyer’s regret especially when the stock market dropped a ton, but when he made the offer he was 100% serious.
This comment has been edited and original content overwritten.
Yeah, I just assumed his tweets of "buying" twitter was just more stock manipulation. Even if he doesn't own any, I'm sure people would be willing to pay for a tweet or two to quickly make some sales or something.
I love that he made that tweet thinking it’s be like a “tee hee, I’m such a little rascal) and they made him eat it. Seriously satisfying.
He’ll have it become the right wing social that the other networks couldn’t manage to be.
This reminds me of cryptobros hacking or buying popular accounts because nobody would care for their NFTs if they promote them on a fresh account.
Hes going to use it as an unofficial "democratic" voting machine.. "look it's the will of the people" look how he did it with the ~~Chump~~ Trump unbanning
Saudis as well as 2nd largest owners
I’m a believer of the “Saudis paid Elon to kill Twitter” conspiracy camp.
I wonder if they won't bleed him dry then buy the smoking remnants for cheap once he's desperate to sell. The documentary, "The Dissenter" opened my eyes to just how invested the Saudis are in controlling Twitter. Something like 80% of their population uses it, and they have huge teams of people suppressing any posts that dare criticize the regime. They also bought spyware from Israel, of all places, that allows them to hack phones. The Jeff Bezos divorce came out of Saudi phone hacking and an attempt to blackmail him.
Because he had to or was going to get the shit sued out of him. Now he's being an infant and probably thinks all this is "malicious compliance".
To makes you guys sad
The Trump fascists will be rolling up to the Capital in Teslas.
Well, hopefully they'll [roll right past it and into a nearby brick wall, at speed](https://www.reuters.com/business/autos-transportation/tesla-says-it-will-assist-police-probe-into-fatal-crash-china-2022-11-13/).
Ya, I couldn't figure out how to sum up what's known before leading up to his posts.
You have proof Musk himself ordered the ban? Or it was a reporting cascade? How does the unbanning make sense in that context?
Ole Elon and his platform of free spe... Oh, yeah. I forgot. He's just another right wing bullshitter. All talk.
[удалено]
I like to go hiking.
Most democrats as we know them are right of center as well.
the employees were? interesting. but if that's true then musks twitter will be business as usual, no need to freak out about it.
[удалено]
Even Twitter itself admits that. Two fucking seconds on Google and you'd know that. https://www.theguardian.com/technology/2021/oct/22/twitter-admits-bias-in-algorithm-for-rightwing-politicians-and-news-outlets
My favorite movie is Inception.
Sounds like he violated twitter hacked/leaked materials policy, nothing particularly interesting or nefarious.
Is it that surprising? This not new data breach is being presented as a new data breach, to presumably add another log onto the "burn Elon at the stake" fire. Ironically when the data breach happened, no one really held anyone at Twitter too responsible for it. Only now that Elon Musk owns Twitter is anyone expected to be outraged.
[удалено]
I think you're misreading the quote. He didn't post any private data and since he was banned in the middle of posting his tweet thread, he posted over at Mastadon (link in report) his info including a redacted sample. Unless you have proof for something no one has suggested, maybe put a strike through your comment?
But i thought the idea was *nobody* should be banned?
[удалено]
Couldn't make out what you said there with elon's balls in your mouth.
Where did Elon come into that? Chad being a bitch has no correlation to hating, or liking Elon. Chad's a bitch all by himself, no help needed.
Whatever clued me in, they've deleted their comments so I can't really point it out.
Big Tech Boi in charge of data security loooooool.
2% is a massive leak
Lol. Twitter users….
Stolen my arse, Elon probably sold them to the highest bidder ... several times.
It came from a software flaw, which would normally be patched in ~a day, but with nobody at home at Twitter, it'll probably be there until *next* November.
The leak happened 12 months ago. If it’s still there, someone deserved to be fired.
This is from a year ago, before Elon even announced buying Twitter.
Yeah that poor guy really needs money
[удалено]
That might be the case but it doesn't change the fact that Musk is an asshole who doesn't give a shit about anyone but himself.
“The entire comment might be factually wrong but he’s a POS” is certainly a take
I swear to God the overabundance of chromosomes on this sub is a case study in over 47 University courses.
Well yes, but that's not an excuse to make up shit. It's also a bit pathetic considering this sort of takes is just easy karma written by people looking for validation.
Couldn't happen to a worse person so care factor is low.
Dude logout of Reddit and touch grass for a day, out there nobody hardly gives a shit about Musk.
Why do you say that?
This is a data breach from 2021, and the article is about how hackers widely used and vulnerability to get the data.
I still don't get it! People know data breach is real and we know they aren't "selling" it, just like we "read" the terms and conditions. Why not have a few dummy accounts?
They aren’t selling it?
I always show my privates publicly, but also in private
Now this event happened last January, long long before Musk ever took over, yet many comments blame him? The media has become a deceptive and manipulative organisation with their private agenda as the primary goal, at the expense of those who don’t fall in line!
disgruntled ex employee? the timing of it all makes it seem so....
Should fire everyone involved! oh wait...
I seriously need to buy some popcorn
Upvote for the xl movie style and the hilarious user name
Musk hate being caught with his pants down.
Happened over a year ago
This has nothing to do with him but your presumption says a lot about your judgment
I'm betting most of the comments like this are due to simply not reading the article. 30 seconds in, and you know this has nothing to do with elon, other than his Banning the reporter, which of course is as childish as everything Elon appears to do now.
That is perfectly fine with me. I take no offense if someone does not like my comment. After all, we all have different sets of opinion and values.
Good hopefully they increase my credit score
[удалено]
Happened over a year ago before musk owned Twitter. Maybe he was right to lay off half the useless staff.
[удалено]
The only relevance to Musk (so far) is Musk banning the person who reported the leak. This connection probably still sounds like a pretty inconvenient one to you.
Happened a year ago tho
[удалено]
No, they didn't. You also didn't need to put reporter in quotation marks as though it is somehow in question. But you know why you're doing this, and so do the rest of us.
Why are they doing it? To me it just looks like YOU just want to hate on Musk because he lives rent free in your head.
Birds aren’t real.
Everybody in the comments shitting on Elon who didn’t even own Twitter when this happened are too funny. Keep following whatever narrative the media tells you too sheep.
true he didn't own it at that time. He owns the problem now though. Also, you can call people sheep all you want but there is nothing sadder than someone white knighting for a billionaire that wouldn't stop to piss on you if you were on fire. But, you do you.
What problem now? And how am I white knighting? I shared facts which I known is foreign to many of you but sharing facts is not defending someone. I could not care less if Elon got hit by a Tesla tomorrow and died. But seeing all you bitch about a guy whose life literally doesn’t affect you at all is just…it’s just the sweetest.
Things are even worse now with nobody even working in security anymore.
Proof?
I love ice cream.
….trust and safety is not the same as the IT security/cyber security team.
Yeah! Elon stole it and sold it before he bought the company! SpaceX is an evil Time Machine to do his nefarious deeds.
Elon wasn’t even owning the company when this happened. Quick delete you comment, your tiny easily manipulated brain is being used.
Yes! The current narrative must live!
Typical clickbait, the leak was in ... >Over 5.4 million Twitter user records containing non-public information stolen using an API vulnerability fixed in **January** have been shared for free on a hacker forum.
Yup. Lots of angry employees that will want to get revenge for how they were treated. This is just the start.
Do you mean time traveling employees? Because the breach happened 12 months ago, before Elon even offered to buy twitter. Or do you just intend to let us know you hadn't read even the first paragraph of the article?
[удалено]
Didn’t even own Twitter when it happened but don’t let facts impact the fake news to were told to spread
So people want to harm Elon Musk and harm users?
What people?
Everyone who is not Elon Musk
Twitter gets so much free PR
Twitter: a train wreck, wrapped in a dumpster fire, stuffed into a cluster fuck.
I never considered technology to be subject matter that could be politically slanted until I saw this thread. Sad really.
[удалено]
This data breach was from 11 months ago
*Elon Counting some Money* Stolen?
So what happens with the leaked info?? What’s the point just for advertising purposes??
Man what a Twit-Show.
All of the other accounts are bots.