10000 Twitter User oauth token hacked and Exposed by Anonymous
![data data](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj-hsc7Xwxd56VoIg8MOkWpPF_KYinaWoiXwJ76RKHgpLY5Omf_OFctQg025dfTu7iGvV6uiei2x6CA5EgjCirViW5-nwENJz7g6A4LHp8gbkI09mIWXhcebokmZ9oqYTCOeTff9y8YGzs/s640/data.jpg)
Anonymous Hackers, with Twitter account "LulzsecReborn"
Hack into TweetGif (http://tweetgif.com) and Hack complete Database,
Later they publish that on Internet also. TweetGif is a website which
allow you to use animated GIF image as your twitter picture.
How Hackers and Spammer can use this?
OAuth
is an authentication protocol that allows users to approve application
to act on their behalf without sharing their password. If your Twitter
oauth Secret Key and Token get compromised , then application or Hacker
can user your Twitter account on Behalf of Your access. You can get
sample script here. These accounts can be used to spam over 10000 of compromised twitter accounts.
Also if hackers are able to
compromise the keys of popular applications like TweetGif and use those
keys to evade Twitter's abuse controls. By using the consumer key and
consumer secret key from a popular third-party Twitter application, a
spammer can make it harder for Twitter to lock out all of his spam
accounts at once without also locking out a large number of legitimate
users of the compromised application.
How you can Protect your Twitter Account: If you are also TweetGif User, you need to go to settings > apps > deauthorize app. #TweetGif. "Revoke Access".
0 comments:
Post a Comment
Thanks for giving your valueable response