Security News > 2020 > October > Security much? Twitter should have had a CISO to prevent Bitcoin hack, says US state financial body
American financial regulators in New York have demanded Twitter be subject to harsher rules following the July hacks of prominent users' accounts - as CEO Jack Dorsey furiously backpedals after his website censored a news article from a US newspaper.
The New York State Department of Financial Services demanded that Twitter be subject to more "Cybersecurity protections", controlled and overseen, naturally, by itself.
DFS blamed Twitter's lack of a chief information security officer for the hack as well as the platform's shift to homeworking.
It identified the attack vector as "Vishing" - voice-enabled phishing - where the hackers made phonecalls to Twitter posing as legitimate staffers and claiming to be struggling with corporate VPN access: "Armed with these personal details, the Hackers successfully convinced several Twitter employees that they were from Twitter's IT department and stole their credentials," said DFS. Twitter censorship kerfuffle.
Separately, Twitter CEO Jack Dorsey was forced into a very public reverse ferret after Twitter staffers blocked a problematic New York Post article from being shared on the platform because it had been labelled as "Potentially harmful."
News URL
Related news
- T-Mobile US fined $31.5M for network security breaches between 2021 and 2023 (source)
- Despite massive security spending, 44% of CISOs fail to detect breaches (source)
- 50% of financial orgs have high-severity security flaws in their apps (source)
- Strategies for CISOs navigating hybrid and multi-cloud security (source)
- CISOs in 2025: Balancing security, compliance, and accountability (source)
- US govt officials’ communications compromised in recent telecom hack (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)
- Chinese cyberspies, Musk’s Beijing ties, labelled ‘real risk’ to US security by senator (source)