|
Twitter hacked in Bitcoin scam (pg. 4)
|
View this Thread in Original format
| Lews |
| quote: | Originally posted by OrangestO
Take a joke. Jesus. You can seem so serious, ya know. |
Jokes are supposed to be funny; your comment just made you seem insecure about your masculinity. |
|
|
| Silky Johnson |
Y'all heard of Pink Whitney? I kept seeing peeps (mostly hockey bros) on my FB posting about it and what a score it was because it was so hard to get. Then one of my very good friends also reported the same thing, so she brought some over for us to try and the hype is real.
It's pink lemonade vodka, created by hockey player Ryan Whitney (hence all the sports bros being super into it). It is not sweet at all if mixed just with soda water. Not chemically tasting either. I was expecting to cringe when I took my first sip, but nope. is delicious and refreshing. Very dangerous!
Anyway, I looked up inventory online and ONE store locally had a bunch of stock. So my husband went and picked up 4 bottles of it. |
|
|
| OrangestO |
| Ha. I have many faults (making bad jokes obv), but being insecure about my masculinity is definitely not one of them :) |
|
|
| Zoso |
| quote: | Originally posted by Silky Johnson
Y'all heard of Pink Whitney? I kept seeing peeps (mostly hockey bros) on my FB posting about it and what a score it was because it was so hard to get. Then one of my very good friends also reported the same thing, so she brought some over for us to try and the hype is real.
It's pink lemonade vodka, created by hockey player Ryan Whitney (hence all the sports bros being super into it). It is not sweet at all if mixed just with soda water. Not chemically tasting either. I was expecting to cringe when I took my first sip, but nope. is delicious and refreshing. Very dangerous!
Anyway, I looked up inventory online and ONE store locally had a bunch of stock. So my husband went and picked up 4 bottles of it. |
Not familiar with such, but I am on the border of the Deep South (TM), and below the Mason-Dixson line. I, too, would have assumed it would be nasty chemical tasting stuff. Now I'm trying to picture Jenny say ya'll with a fake southern drawl. :D |
|
|
| Silky Johnson |
| quote: | Originally posted by OrangestO
Ha. I have many faults (making bad jokes obv), but being insecure about my masculinity is definitely not one of them :) |
Lol I liked the pretentious twat post better. ! |
|
|
| OrangestO |
| quote: | Originally posted by Silky Johnson
Lol I liked the pretentious twat post better. ! |
:stongue: :stongue:
That was my impulsive response, then I remembered I'm trying to be more positive and avoid unnecessary conflict in my life. Even on here.
Well it's out in the open now! :o |
|
|
| Zoso |
| quote: | Originally posted by Silky Johnson
Lol I liked the pretentious twat post better. ! |
Cum for the pretentious twat; stay for the ! |
|
|
| Silky Johnson |
| :stongue::stongue: |
|
|
| Vector A |
It's hard for me to imagine what kind of security failures led to some social engineer being able to post using arbitrary Twitter accounts, short of them actually gaining write access to the database. I just don't see why you would ever put that ability into the software, even for testing purposes.
It would be interesting to get a full explanation of what went wrong. |
|
|
| Zoso |
| quote: | Originally posted by Vector A
It's hard for me to imagine what kind of security failures led to some social engineer being able to post using arbitrary Twitter accounts, short of them actually gaining write access to the database. I just don't see why you would ever write that ability into the software, even for testing purposes.
It would be interesting to get a full explanation of what went wrong. |
Agreed. I hope more technical, detailed information is made public. But, given how good ole US companies respond to like this to try and save face and keep those executive bonuses flowing, I am sure we'll have to settle for "we have found and corrected the source of the problem" or some equivalent hand waving.
Brian Krebs has a little more info over on his blog if you're interested: https://krebsonsecurity.com/2020/07...c-twitter-hack/ |
|
|
| Vector A |
Interesting, so an employee with the right privileges could change the email address of a target's Twitter account. No DB access required. Well, that basically explains it then.
Pretty stupid to have that ability built in, IMO. |
|
|
| Zoso |
| quote: | Originally posted by Vector A
Interesting, so an employee with the right privileges could change the email address of a target's Twitter account. No DB access required. Well, that basically explains it then.
Pretty stupid to have that ability built in, IMO. |
Yep, that simple. I wonder, if the reporting is in fact accurate, how much the insider/employee was paid for this access? I would think that due to logging/audit trails, Twitter could pretty quickly and easily identify the employee. Talk about burning your damned bridges. No way you'd ever get a job in any tech firm again, and Twitter has the deep pockets necessary to prosecute...so I would think it would need to be an obscene amount of money.
EDIT: well, they have changed the wording. The initial reports made it sound like a willing, malicious insider...now it's stated they were possibly tricked or coerced.
I've also seen more than a few speculating that the real target was access to these high profile targets' DMs (direct messages, I think), and the Bitcoin just was just a distraction that happened to net some coin. |
|
|
|
|
