undefined | Better HN

0 pointsjonny_eh5y ago0 comments

Or a distraction while a bigger hack is going on?

0 comments

Without knowing what they have access to, it's hard to tell.

If it's a third party API key with special priviledged that they hacked, the potential harm is limited.

If they have access to the full system, they could be sending millions of ghost messages to some part of the population right now to get them to do something while we all watch the BTC show:

- scam them

- get them infected to gather a massive bot net

- make them very angry and start some kind of civil unrest in a specific part of the world

- cover a currently happening terrible event somewhere so that we don't learn about it too soon because twitter is the faster medium for that

At this point I realize how critical twitter has became to shape the way we view the world, and govs should worry a lot that this can be happening and act on it quickly.

pldr12345y ago

That makes no sense. The BTC show increases general public suspicion in a huge way. It would be counteractive, if they are also doing what you say.

Scoundreller5y ago

> If it's a third party API key with special priviledged that they hacked

Unlikely since the tweets appeared from "Twitter Web App"

woeirua5y ago

Bingo, they're probably walking away with all of Twitter's internal data as we speak...

kristofferR5y ago

They're wasting time and money on purpose too, the dead rapper XXXTentacion just tweeted: “Smoking a fat blunt on my private island giving out bitcoin to my supporters”, Elon tweeted "hi" etc.

They also can't be stupid enough to not understand that using a single address that is blocked in most web wallets now is completely dumb.

dmix5y ago

> They also can't be stupid enough to not understand that using a single address that is blocked in most web wallets now is completely dumb.

Everyone always assumes stuff like this after every big criminal case. But every time it turns out that yes they were that stupid.

tornato75y ago

Occam's Razor. My bet is on it being some teenage hacker who was screwing around with Twitter APIs and noticed a glaring security flaw.

IIAOPSW5y ago

I sometimes get "we hacked your site, pay us bitcoin" spam via a contact page on my website. Once, I decided to send them a few cents to see if they were dumb enough to sweep it somewhere. To my surprise, they really were that dumb. It seems to be in some sort of wash trade loop (maybe a coin tumbler).

1Md6imvB2neTF3s1kFiMG473k1XrBhxQhF

netsec_burn5y ago

Alternative take, it could be a distraction while they short various stocks. Obviously 12 BTC/100K isn't worth hacking Twitter. Perhaps if everyone is watching the Bitcoin address, they may miss the real heist.

sct2025y ago

Shorting stocks will be suspicious if they do it from accounts who have never done much volume before. There are insider traders who are caught all the time doing 1 big trade (relative to their account values and previous activity) miraculously at the right time.

jkhdigital5y ago

Definitely, this is like the theorized “Goldfinger” attack on cryptocurrencies—sabotage the network after building up a sizeable short position in derivatives. However a Goldfinger attack on Twitter stock would be a challenge to hide, since any evidence of anomalous trading patterns could open you up to prosecution by the SEC. Might want to check for any huge buys of daily put options on TWTR...

outworlder5y ago

But why do it after hours then?

dillondoyle5y ago

That's what I first thought of a potential better scam. Pump and dump. Emergency news covid vaccine gets emergency authorization or the opposite Moderna is pulled from next phase it killed people. I know the SEC is good at sniffing that out but seems like could easily get more than a few 100k especially given the Moderna news / earnings season

tornato75y ago

"Funding secured to take Tesla private at $42069 per share"

netsec_burn5y ago

TWTR is probably the only stock that wouldn't bounce back immediately after the scam is revealed.

rainyMammoth5y ago

All the DMs would definitely be valuable.

woeirua5y ago

That's definitely one way you could blackmail people for more BTC, or unmasking various prominent anonymous accounts... Lots of way to use that info to make serious money on the darkweb.

codesternews5y ago

Why anyone take such a big risk when they could play with stocks with one account.

2 more replies

ALittleLight5y ago

Where does one go to sell or buy DMs like this? I'd like to take a look to see if or when twitter data becomes available.

manjalyc5y ago

Most communities that would actually have buyers for high level information are well hidden, you basically have to know someone to get in. I don't know of any sites on TOR that have a marketplace for this kind of high level information, but there's defintely a couple russian marketplaces on i2p. I don't have the links anymore but they're probably somewhere out there on the clear web.

Scoundreller5y ago

Could explain why this happened during business hours. Data flowing out from servers doesn't look out of place then...

edoceo5y ago

Twitter is 24/7, it's a global company

beaner5y ago

What's the logic? It makes the problem much more visible. Ostensibly the fix for fake tweets would also fix whatever they'd be trying to cover.

j / k navigate · click thread line to collapse

0 comments

BiteCode_dev5y ago

Without knowing what they have access to, it's hard to tell.

If it's a third party API key with special priviledged that they hacked, the potential harm is limited.

If they have access to the full system, they could be sending millions of ghost messages to some part of the population right now to get them to do something while we all watch the BTC show:

- scam them

- get them infected to gather a massive bot net

- make them very angry and start some kind of civil unrest in a specific part of the world

- cover a currently happening terrible event somewhere so that we don't learn about it too soon because twitter is the faster medium for that

At this point I realize how critical twitter has became to shape the way we view the world, and govs should worry a lot that this can be happening and act on it quickly.

pldr12345y ago

That makes no sense. The BTC show increases general public suspicion in a huge way. It would be counteractive, if they are also doing what you say.

Scoundreller5y ago

> If it's a third party API key with special priviledged that they hacked

Unlikely since the tweets appeared from "Twitter Web App"

woeirua5y ago

Bingo, they're probably walking away with all of Twitter's internal data as we speak...

kristofferR5y ago

They're wasting time and money on purpose too, the dead rapper XXXTentacion just tweeted: “Smoking a fat blunt on my private island giving out bitcoin to my supporters”, Elon tweeted "hi" etc.

They also can't be stupid enough to not understand that using a single address that is blocked in most web wallets now is completely dumb.

dmix5y ago

> They also can't be stupid enough to not understand that using a single address that is blocked in most web wallets now is completely dumb.

Everyone always assumes stuff like this after every big criminal case. But every time it turns out that yes they were that stupid.

tornato75y ago

Occam's Razor. My bet is on it being some teenage hacker who was screwing around with Twitter APIs and noticed a glaring security flaw.

IIAOPSW5y ago

1Md6imvB2neTF3s1kFiMG473k1XrBhxQhF

netsec_burn5y ago

sct2025y ago

jkhdigital5y ago

outworlder5y ago

But why do it after hours then?

dillondoyle5y ago

tornato75y ago

"Funding secured to take Tesla private at $42069 per share"

netsec_burn5y ago

TWTR is probably the only stock that wouldn't bounce back immediately after the scam is revealed.

rainyMammoth5y ago

All the DMs would definitely be valuable.

woeirua5y ago

That's definitely one way you could blackmail people for more BTC, or unmasking various prominent anonymous accounts... Lots of way to use that info to make serious money on the darkweb.

codesternews5y ago

Why anyone take such a big risk when they could play with stocks with one account.

2 more replies

ALittleLight5y ago

Where does one go to sell or buy DMs like this? I'd like to take a look to see if or when twitter data becomes available.

manjalyc5y ago

Scoundreller5y ago

Could explain why this happened during business hours. Data flowing out from servers doesn't look out of place then...

edoceo5y ago

Twitter is 24/7, it's a global company

beaner5y ago

What's the logic? It makes the problem much more visible. Ostensibly the fix for fake tweets would also fix whatever they'd be trying to cover.

j / k navigate · click thread line to collapse