At the well-known hacker forum, Breached Forums offered to buy a $30,000 database with telephone numbers and e-mail addresses for 5.4 million Twitter users.
Restore Privacy reported that the data leak was made possible by the vulnerability of the Twitter security system as early as January. Then HackerOne reported on the bug, which allows the intruder to obtain a telephone number and/or e-mail address of a Twitter participant, even if he hid these fields in confidentiality settings in his account.
Although Twitter has acknowledged the problem and removed vulnerability, hackers have been able to access the user data that they are now trying to sell through the Breached Forums. The perpetrators argue that the proposed database contains information about some celebrities, companies, etc.
Restore Privacy reported that a portion of the database containing publicly available information from Twitter users ' profiles from different countries, as well as e-mail addresses and telephone numbers, had been downloaded for testing and analysis.
" reported the analysts to Restore Privacy.