Monday 28 November 2022 04:53 PM Twitter hack sees 5.4 MILLION phone numbers and email addresses leaked on the ... trends now

Monday 28 November 2022 04:53 PM Twitter hack sees 5.4 MILLION phone numbers and email addresses leaked on the ... trends now
Monday 28 November 2022 04:53 PM Twitter hack sees 5.4 MILLION phone numbers and email addresses leaked on the ... trends now

Monday 28 November 2022 04:53 PM Twitter hack sees 5.4 MILLION phone numbers and email addresses leaked on the ... trends now

More than 5.4 million Twitter user records, including personal phone numbers and email addresses, are up for grabs on the dark web in a massive data dump that some believe the firm is covering up.

The data dump was identified by Chad Loder, the founder of cyber security awareness company Habitu8, who shared the news in a post to his Twitter account on November 23 - and his account was suspended shortly after posting.

The problem with this data being available is that it is information to unleash phishing attacks to obtain login credentials. 

Removing Loder's tweets and suspension has sparked concerns that Twitter is trying to hide the issue, with some Twitter users saying Elon Musk 'banned [him] for exposing how weak Twitter security is.'

The user data was first posted on a hacking forum in July with a $30,000 price tag, but a recent sale offers the information for free, according to Bleeping Computer.

The data dump was shared last week on the dark web. A hacker posted in a forum that they have 5.4 million Twitter user records and is offering them for free

The data dump was shared last week on the dark web. A hacker posted in a forum that they have 5.4 million Twitter user records and is offering them for free

The data dump was identified by Chad Loder, the founder of cyber security awareness company Habitu8, who shared the news in a post to his Twitter account on November 23

The data dump was identified by Chad Loder, the founder of cyber security awareness company Habitu8, who shared the news in a post to his Twitter account on November 23

Loder's account was suspended a day after sharing the news of the data dump. It is still suspended to this day

Loder's account was suspended a day after sharing the news of the data dump. It is still suspended to this day

It is believed that hackers obtained the information in 'December 2021 using a Twitter API vulnerability disclosed in the HackerOne bug bounty program that allowed people to submit phone numbers and email addresses into the API to retrieve the associated Twitter ID,' according to Bleeping Computer.

Twitter confirmed in August that bad actors took advantage of the vulnerability but patched the flaw in January 2022.

At this time, Twitter reported it had 'no evidence' that the flaw had been exploited.

Daily Mail has contacted Twitter for comment.

Removing Loder's tweets and suspension has sparked concerns that Twitter is trying to hide the issue, with some Twitter users saying Elon Musk 'banned [him] for exposing how weak Twitter security is

Removing Loder's tweets and suspension has sparked concerns that Twitter is trying

read more from dailymail.....

NEXT The UK's most sustainable restaurants are revealed - and it's bad news for KFC ... trends now