Connect with us

Hi, what are you looking for?



Twitter Warns Users of State Sponsored Hacking

Twitter on Friday began sending notifications to several users, warning them that their accounts might be targeted by state sponsored attackers.

Twitter on Friday began sending notifications to several users, warning them that their accounts might be targeted by state sponsored attackers.

In the message sent to users, the company said that usernames, IP address, and email addresses were impacted by the attacks, along with phone numbers, when associated with the accounts. However, Twitter did not reveal which country it believes could be behind the attacks, but it did say it was investigating the incidents.

Twitter is now the third social network to warn users of possible state sponsored attacks, after Google in 2012 and Facebook in October of this year announced they would take similar actions. Both companies revealed that they already had the systems in place to monitor accounts for potentially malicious activity, yet Twitter did not make such a formal announcement on the matter.

While this appears to be the first time the company has sent out notices to users on suspected compromise from an attacker believed to be working on behalf of a nation-state, future similar notifications might follow.

According to a post on Motherboard, Twitter’s warning reached users at around the same time, between 5:15 and 5:16 PM EST on Friday.

Some of the users receiving these notifications are connected to the Tor Project, while others are associated with the security community, yet no specific link between them has been found so far.

Winnipeg-based nonprofit organization Coldhak was one of the first to tweet about the warning, with Colin Childs, one of the founding directors, receiving the notification on his personal account as well.

Advertisement. Scroll to continue reading.

In the email notification, Twitter also noted that it had no evidence that the attackers managed to obtain account information. Since account compromise was a possibility, users were advised to take steps towards improving their security, where necessary.

Runa Sandvik, a privacy and security researcher who now works with media organizations to train them on the matter, appears to have been targeted by such an attack as well. She used to work with the Tor Project, which is focused on helping users maintain their privacy online, and the attack might have been triggered by her previous work.

However, she criticizes Twitter in one of her tweets, because the warning she received from the messaging platform was encouraging her to use Tor to protect her online identity, yet she says Twitter frequently blocks accounts that are accessed over Tor.

With Twitter yet to make an official announcement on its policy towards notifications regarding state sponsored attacks, it’s unclear why users received these warnings, especially with some of them saying that no suspect activity has been observed on their accounts. It is also unclear how many users received the email alterts.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...


Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.


Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source...

Mobile & Wireless

As smartphone manufacturers are improving the ear speakers in their devices, it can become easier for malicious actors to leverage a particular side-channel for...

Cloud Security

AWS has announced that server-side encryption (SSE-S3) is now enabled by default for all Simple Storage Service (S3) buckets.


Meta was fined an additional $5.9 million for violating EU data protection regulations with WhatsApp messaging app.