Power

Hackers took over Twitter after 'a coordinated social engineering attack' on employees

The accounts of Jeff Bezos, Tim Cook, Bill Gates, Elon Musk, Joe Biden and many more were compromised. But a lot of unanswered questions remain.

Hackers took over Twitter after 'a coordinated social engineering attack' on employees

"You may be unable to Tweet or reset your password while we review and address this incident," tweeted the official Twitter Support account.

Image: Protocol

Twitter acknowledged Wednesday evening that a third party was able to target its employees with "social engineering" techniques to gain control of the accounts of some of its most prominent users, uncorking a Bitcoin scam and sending the internet into a tizzy for several hours.

"We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools," Twitter said through its Twitter Support account hours after the first hijacked tweets were sent. "We know they used this access to take control of many highly visible (including verified) accounts and Tweet on their behalf."

The accounts of Jeff Bezos, Tim Cook, Bill Gates, Elon Musk, Joe Biden, Kanye West, Kim Kardashian-West and a number of other major figures in tech, media and politics began tweeting out the same message midafternoon on the West Coast, urging their combined tens of millions followers to donate thousands of dollars in Bitcoin to a mystery account.

Shortly thereafter, verified users lost the ability to post. Unverified users began celebrating with tweets and GIFs. "The revolution will be unverified," one Twitter user wrote.

The block on verified accounts prevented major news organizations, federal agencies, police departments and state governments from tweeting out information.

Most of the messages, which began with the phrase "I am giving back to the community," promised to double the donations of anyone who sent Bitcoin to a particular wallet. Within hours, more than 300 people had sent more than $110,000.

More than an hour after the hacks began, scam tweets were still being sent from the accounts of additional celebrities. "We have locked accounts that were compromised and will restore access to the original account owner only when we are certain we can do so securely," Twitter Support said late Wednesday.

A key question Twitter will need to answer in the coming days and weeks is not just how this breach occurred, but also how much access the hackers had to those users' accounts. The collateral damage could be infinitely larger, for instance, if the hackers had a window into these people's direct messages.

"Internally, we've taken significant steps to limit access to internal systems and tools while our investigation is ongoing. More updates to come as our investigation continues," Twitter Support said late Wednesday.

The Biden campaign told Protocol in a statement, "Twitter locked down the account immediately following the breach and removed the related tweet. We remain in touch with Twitter on the matter." The campaign didn't immediately respond to a question about whether it had two-factor authentication enabled.

Shortly after the breach, Republican Sen. Josh Hawley of Missouri sent a letter to Twitter CEO Jack Dorsey demanding answers about the scope of the damage and asking Dorsey to contact the Department of Justice and the Federal Bureau of Investigations for help looking into the matter. "I am concerned that this event may represent not merely a coordinated set of separate hacking incidents but rather a successful attack on the security of Twitter itself," the letter reads. "A successful attack on your system's servers represents a threat to all of your users' privacy and data security."

Twitter CEO Jack Dorsey addressed the hack in a tweet earlier Wednesday evening, but it didn't explain much. "Tough day for us at Twitter," Dorsey wrote. "We all feel terrible this happened. We're diagnosing and will share everything we can when we have a more complete understanding of exactly what happened." He ended with a blue heart emoji for "our teammates working hard to make this right."

Update: This post was updated at 8:15 p.m. PT with more information from Twitter Support.

LA is a growing tech hub. But not everyone may fit.

LA has a housing crisis similar to Silicon Valley’s. And single-family-zoning laws are mostly to blame.

As the number of tech companies in the region grows, so does the number of tech workers, whose high salaries put them at an advantage in both LA's renting and buying markets.

Photo: Nat Rubio-Licht/Protocol

LA’s tech scene is on the rise. The number of unicorn companies in Los Angeles is growing, and the city has become the third-largest startup ecosystem nationally behind the Bay Area and New York with more than 4,000 VC-backed startups in industries ranging from aerospace to creators. As the number of tech companies in the region grows, so does the number of tech workers. The city is quickly becoming more and more like Silicon Valley — a new startup and a dozen tech workers on every corner and companies like Google, Netflix, and Twitter setting up offices there.

But with growth comes growing pains. Los Angeles, especially the burgeoning Silicon Beach area — which includes Santa Monica, Venice, and Marina del Rey — shares something in common with its namesake Silicon Valley: a severe lack of housing.

Keep Reading Show less
Nat Rubio-Licht

Nat Rubio-Licht is a Los Angeles-based news writer at Protocol. They graduated from Syracuse University with a degree in newspaper and online journalism in May 2020. Prior to joining the team, they worked at the Los Angeles Business Journal as a technology and aerospace reporter.

While there remains debate among economists about whether we are officially in a full-blown recession, the signs are certainly there. Like most executives right now, the outlook concerns me.

In any case, businesses aren’t waiting for the official pronouncement. They’re already bracing for impact as U.S. inflation and interest rates soar. Inflation peaked at 9.1% in June 2022 — the highest increase since November 1981 — and the Federal Reserve is targeting an interest rate of 3% by the end of this year.

Keep Reading Show less
Nancy Sansom

Nancy Sansom is the Chief Marketing Officer for Versapay, the leader in Collaborative AR. In this role, she leads marketing, demand generation, product marketing, partner marketing, events, brand, content marketing and communications. She has more than 20 years of experience running successful product and marketing organizations in high-growth software companies focused on HCM and financial technology. Prior to joining Versapay, Nancy served on the senior leadership teams at PlanSource, Benefitfocus and PeopleMatter.

Policy

SFPD can now surveil a private camera network funded by Ripple chair

The San Francisco Board of Supervisors approved a policy that the ACLU and EFF argue will further criminalize marginalized groups.

SFPD will be able to temporarily tap into private surveillance networks in certain circumstances.

Photo: Justin Sullivan/Getty Images

Ripple chairman and co-founder Chris Larsen has been funding a network of security cameras throughout San Francisco for a decade. Now, the city has given its police department the green light to monitor the feeds from those cameras — and any other private surveillance devices in the city — in real time, whether or not a crime has been committed.

This week, San Francisco’s Board of Supervisors approved a controversial plan to allow SFPD to temporarily tap into private surveillance networks during life-threatening emergencies, large events, and in the course of criminal investigations, including investigations of misdemeanors. The decision came despite fervent opposition from groups, including the ACLU of Northern California and the Electronic Frontier Foundation, which say the police department’s new authority will be misused against protesters and marginalized groups in a city that has been a bastion for both.

Keep Reading Show less
Issie Lapowsky

Issie Lapowsky ( @issielapowsky) is Protocol's chief correspondent, covering the intersection of technology, politics, and national affairs. She also oversees Protocol's fellowship program. Previously, she was a senior writer at Wired, where she covered the 2016 election and the Facebook beat in its aftermath. Prior to that, Issie worked as a staff writer for Inc. magazine, writing about small business and entrepreneurship. She has also worked as an on-air contributor for CBS News and taught a graduate-level course at New York University's Center for Publishing on how tech giants have affected publishing.

Enterprise

These two AWS vets think they can finally solve enterprise blockchain

Vendia, founded by Tim Wagner and Shruthi Rao, wants to help companies build real-time, decentralized data applications. Its product allows enterprises to more easily share code and data across clouds, regions, companies, accounts, and technology stacks.

“We have this thesis here: Cloud was always the missing ingredient in blockchain, and Vendia added it in,” Wagner (right) told Protocol of his and Shruthi Rao's company.

Photo: Vendia

The promise of an enterprise blockchain was not lost on CIOs — the idea that a database or an API could keep corporate data consistent with their business partners, be it their upstream supply chains, downstream logistics, or financial partners.

But while it was one of the most anticipated and hyped technologies in recent memory, blockchain also has been one of the most failed technologies in terms of enterprise pilots and implementations, according to Vendia CEO Tim Wagner.

Keep Reading Show less
Donna Goodison

Donna Goodison (@dgoodison) is Protocol's senior reporter focusing on enterprise infrastructure technology, from the 'Big 3' cloud computing providers to data centers. She previously covered the public cloud at CRN after 15 years as a business reporter for the Boston Herald. Based in Massachusetts, she also has worked as a Boston Globe freelancer, business reporter at the Boston Business Journal and real estate reporter at Banker & Tradesman after toiling at weekly newspapers.

Fintech

Kraken's CEO got tired of being in finance

Jesse Powell tells Protocol the bureaucratic obligations of running a financial services business contributed to his decision to step back from his role as CEO of one of the world’s largest crypto exchanges.

Photo: David Paul Morris/Bloomberg via Getty Images

Kraken is going through a major leadership change after what has been a tough year for the crypto powerhouse, and for departing CEO Jesse Powell.

The crypto market is still struggling to recover from a major crash, although Kraken appears to have navigated the crisis better than other rivals. Despite his exchange’s apparent success, Powell found himself in the hot seat over allegations published in The New York Times that he made insensitive comments on gender and race that sparked heated conversations within the company.

Keep Reading Show less
Benjamin Pimentel

Benjamin Pimentel ( @benpimentel) covers crypto and fintech from San Francisco. He has reported on many of the biggest tech stories over the past 20 years for the San Francisco Chronicle, Dow Jones MarketWatch and Business Insider, from the dot-com crash, the rise of cloud computing, social networking and AI to the impact of the Great Recession and the COVID crisis on Silicon Valley and beyond. He can be reached at bpimentel@protocol.com or via Google Voice at (925) 307-9342.

Latest Stories
Bulletins