Hacked Twitter data includes phone numbers, personal emails for celebrities, prominent politicians

More than 5.4 million user records from Twitter have been published online, exposing everything from private phone numbers to email addresses.

The data, which was released for free on a popular hacking forum this month, was pilfered last December after hackers exploited an API vulnerability on the social media platform.

Although Twitter says the issue was patched in January after it was reported to the HackerOne bug bounty program, numerous threat actors were able to take advantage before the vulnerability was fixed.

The leak, as first reported by BleepingComputer, contains not only private phone numbers and email addresses but public scrapes of “Twitter IDs, names, login names, locations, and verified status.”

Before being released for free, a hacker had attempted to sell the information on the same hacking forum for $30,000 in July.

The Daily Dot was able to confirm the presence of both private emails and phone numbers in the data breach. The Daily Dot was also able to confirm that the private emails and phone numbers in the data breach included those of high-profile celebrities and politicians.

Aside from the 5.4 million user records, private data on more than 1.4 million suspended Twitter accounts has also been shared privately online. The additional data, according to BleepingComputer, has not been made public.


Join now!