Well, it happened again! As I had shared recently, the Twitter account linked to this Substack (@mikeburgersburg) was recently compromised. Someone was able to bypass two-factor authentication and change the login credentials. Twitter locked the account, and so far I have not been able to regain control.
In response, I had created a backup account (@dirtybubblemed). I was careful to follow best practices on my end. Unfortunately, that was not enough, as this morning I discovered that, for a second time, someone had managed to bypass Twitter’s security and change the login information.
This is the same thing that happened to @mikeburgersburg:
Since I am not a computer security expert, I cannot be certain that this exploit isn’t happening on my end. However, I have seen no signs of other accounts or this machine being compromised. Indeed, if I was targeting this project, I would have gone after this Substack first as it contains much more valuable information than Twitter.
This is not an issue that is specific to me. A very similar hack has been executed many times against others. It is bewildering that Twitter cannot seem to solve this issue, especially when these attacks are often used against journalists. Conversely, the bot accounts on Twitter that shill fraud after fraud seem to keep getting along just fine…
Regardless, I created a new backup at @dirtybubblemed3 for now. I am hoping Twitter can resolve this issue and restore access to either of these accounts, although I will not be holding my breath!
some info
An incident impacting some accounts and private information on Twitter
https://privacy.twitter.com/en/blog/2022/an-issue-affecting-some-anonymous-accounts
Hacker selling Twitter account data of 5.4 million users for $30k
https://www.bleepingcomputer.com/news/security/hacker-selling-twitter-account-data-of-54-million-users-for-30k/
#1439026 Discoverability by phone number/email restriction bypass
https://hackerone.com/reports/1439026
This "hacking" could be disgruntled Twitter employees, who are trying to damage Elon Musk's public image and attract government intervention into the "verified" blue check program. These progs are evil.