Security News > 2020 > October > Security much? Twitter should have had a CISO to prevent Bitcoin hack, says US state financial body

American financial regulators in New York have demanded Twitter be subject to harsher rules following the July hacks of prominent users' accounts - as CEO Jack Dorsey furiously backpedals after his website censored a news article from a US newspaper.

The New York State Department of Financial Services demanded that Twitter be subject to more "Cybersecurity protections", controlled and overseen, naturally, by itself.

DFS blamed Twitter's lack of a chief information security officer for the hack as well as the platform's shift to homeworking.

It identified the attack vector as "Vishing" - voice-enabled phishing - where the hackers made phonecalls to Twitter posing as legitimate staffers and claiming to be struggling with corporate VPN access: "Armed with these personal details, the Hackers successfully convinced several Twitter employees that they were from Twitter's IT department and stole their credentials," said DFS. Twitter censorship kerfuffle.

Separately, Twitter CEO Jack Dorsey was forced into a very public reverse ferret after Twitter staffers blocked a problematic New York Post article from being shared on the platform because it had been labelled as "Potentially harmful."

News URL

https://go.theregister.com/feed/www.theregister.com/2020/10/15/twitter_hack_report_new_york_post_censorship/