Twitter Says 'Coordinated Attack' Targeting Employees Led To Hacking Of Famous Accounts
SAN FRANCISCO (CBS SF/CNN) -- Cyber security experts continued to work with San Francisco-based social media giant Twitter in an attempt to identify hackers who were able to break into accounts belonging to Joe Biden, Bill Gates and Elon Musk among others.
Late Wednesday night, the company issued a statement calling the hacking a coordinated attack.
"We detected what we believe to be a coordinated social engineering attack by people who successfully targeted some of our employees with access to internal systems and tools," Twitter's support team said.
The attackers posted tweets that appeared to promote a cryptocurrency scam and was not policial in nature.
"We have locked accounts that were compromised and will restore access to the original account owner only when we are certain we can do so securely," the support team said.
The accounts, along with those of former President Barack Obama, Kanye West, Kim Kardashian West, Warren Buffett, Jeff Bezos and Mike Bloomberg, posted similar tweets soliciting donations via Bitcoin to their verified profiles.
"Everyone is asking me to give back, and now is the time," Gates' tweet said, promising to double all payments to a Bitcoin address for the next 30 minutes. All the tweets were subsequently deleted.
"Once we became aware of the incident, we immediately locked down the affected accounts and removed Tweets posted by the attackers," Twitter said.
In a tweet on Wednesday, CEO Jack Dorsey said it was a "tough day for us at Twitter."
"We all feel terrible this happened," Dorsey said. "We're diagnosing and will share everything we can when we have a more complete understanding of exactly what happened."
A little more than an hour after the attack began, Twitter apparently moved to prevent holders of verified accounts from tweeting. Non-verified accounts could still tweet, however.
Around 8:30 pm ET, roughly three hours after Twitter first said publicly that it was investigating the apparent hack and a little more than two hours after it shut down tweeting for some accounts, Twitter said the majority of accounts had been restored to full functionality.
"Most accounts should be able to Tweet again. As we continue working on a fix, this functionality may come and go," Twitter said. "We're working to get things back to normal as quickly as possible."
The company said it is still investigating the breach and what other data may have been compromised.
The sheer number of prominent accounts impacted made it arguably the biggest security incident in Twitter's history. A hack like this is particularly concerning not just because of any financial scam that can be run, but because so many world leaders use Twitter — and some, like President Donald Trump, use it to announce major policy decisions. A hack that took over an account belonging to one of those leaders could have devastating consequences.
Last year, Dorsey's account was hacked, raising concerns about whether any account on the platform can truly avoid being compromised. The mechanism by which that hack occurred was fixed by Twitter after Dorsey's hack and there's no reason to believe it is to blame here.
A campaign aide for Biden said Twitter "locked down" his account immediately. "We remain in touch with Twitter on the matter," the aide added.
© Copyright 2020 CNN. All Rights Reserved. This material may not be published, broadcast, rewritten or redistributed.