"Data of 235 Million Twitter Users Leaked Online"

Data on 235 million Twitter users has been published on a popular hacker forum. Experts have confirmed the legitimacy of the entries in the massive leaked archive. A threat actor exposed the data of 5.4 million Twitter accounts at the end of July 2022 after exploiting a now-patched vulnerability in the popular social media network. A post published on Hacker in January claimed the discovery of a vulnerability that an attacker could exploit to find a Twitter account through the associated phone number and email, even if the user has set their privacy settings to prevent this. Multiple threat actors exploited this flaw to scrape Twitter user accounts comprising both private and public information. The extracted information was then sold on cybercriminal marketplaces. In August, Twitter revealed that the data breach stemmed from the now-patched zero-day vulnerability disclosed by the researcher Zhirinovskiy through the bug bounty platform HackerOne. In December, another Twitter data breach made headlines when a threat actor attempted to sell the information of 400 million Twitter users. Now, a threat actor has uploaded an archive on Breach Forums that contains the data of 235 million Twitter users and can be downloaded for eight credits. This article continues to discuss the latest exposure of Twitter users' data. 

Security Affairs reports "Data of 235 Million Twitter Users Leaked Online"