In a statement on its website, the firm revealed a 'spear phishing' attack was used to pilfer the personal details of unsuspecting Twitter staff and contractors. This information was then used to gain access to internal account management tools which gave hackers free rein. Insiders recently revealed that more than 1,000 Twitter employees had the ability to access internal tools and a number of these were targeted by hackers. 'We know that they accessed tools only available to our internal support teams to target 130 Twitter accounts,' said a statement posted on Twitter's blog. In this case that was the internal tools at Twitter, but the technique is often used to obtain banking details.

Source: Daily Mail July 31, 2020 08:28 UTC