Security News > 2020 > August > Takeaways From the "CryptoForHealth" Twitter Hack

In the Twitter breach, the attackers leveraged social engineering tactics to target a small number of employees through a phone spear phishing attack.

In Twitter's case, the intelligence gained by the attackers enabled them to target additional employees who did have access to the Twitter account support tool, which allows privileged employees to control all facets of a Twitter account.

The attackers also accessed the Direct Message inbox of 36 accounts and downloaded the Twitter Data of up to eight accounts.

The "CryptoForHealth" Twitter Hack is the latest reminder that security professionals need to closely align their cyber defense strategies with the TTPs being leveraged by their cyber adversaries and apply multiple layers of security controls to minimize the risk of both external and insider threats.

Ultimately, the Twitter hack illustrates the importance of defending against credential-based attacks that are responsible for the majority of today's data breaches.

News URL

http://feedproxy.google.com/~r/Securityweek/~3/o-076_xOZso/takeaways-cryptoforhealth-twitter-hack