Millions of Twitter accounts potentially breached but whistleblower is silenced with account suspension

MILLIONS of Twitter accounts were potentially affected in a data breach across Europe and the United States.

Last week, cybersecurity expert Chad Loder drew attention to last year's breach on Twitter and within hours their account was suspended. 

3

3

3

On November 23, Loder, who is nonbinary and uses they pronouns, revealed they received evidence of the “massive breach” that occurred “no earlier than 2021."

“This Twitter data breach has not been reported before,” Loder wrote in a Twitter thread captured by WayBack TimeMachine. 

Loder detailed that any Twitter account that has the discoverability setting which allows others to find your account “by your phone” activated were affected by the breach. 

“All accounts for the entire country code of France (+33) are listed in the dataset with their mobile numbers,” Loder said, revealing that the breached data set also includes verified accounts, celebrities, politicians and government agencies. 

Read More on Cybersecurity

BROKEN TRUST

Official warning for all Microsoft users as data breach confirmed

NOT APPY

Hacker claims to have leaked 500million WhatsApp numbers on Dark Web

“From what I have confirmed, the breached Twitter data covers, at a minimum, the full phone number spaces for multiple country codes in the EU, and some area code in the US.”

According to Info-Security Magazine, the breached data included Twitter IDs, names, logins, locations, verified status information, phone numbers and emails. 

To see if your account has this setting enabled, go to your Twitter account and open Settings & Privacy. 

From there click on the menu item “Privacy and safety.” 

Most read in News Tech

CHAT'S GREAT?

ChatGPT gets smarter as OpenAI reveals new free 'brain' that can 'see' photos

BE AMAZED

Americans can see Northern Lights aurora tonight - maps show best spots

HIDDEN TRICK

iPhone owners find trick to use cell’s ‘hidden button’

SAM-ART MOVE

Samsung reveals easy battery life tricks to ‘keep device powered on all day’

Next click on “Discoverability and contacts.” 

There users can see if they have the setting enabled and can choose to turn it off by selecting the slider. 

Only hours after revealing the breach, Loder posted on their Mastodon account: “Elon Musk suspended me.” 

The apparent breach comes months after Twitter admitted the social media platform was subject to a similar one earlier this year. 

In January 2022, the tech giant was first made aware of that breach, which allowed hackers to learn information about certain accounts through phone numbers and emails. 

Several months later in July, Twitter learned that “someone had potentially leveraged this and was offering to sell the information they had compiled.”

While Twitter did not admit to the breach until August, they claim the initial breach was fixed when they were made aware of it in January. 

Last week, Loder revealed they compared the recently breached data to the data from the earlier breach. 

“It is NOT the same data,” the cybersecurity expert wrote. 

“Completely different format, different affected accounts. Likely multiple actors all exploiting the same vulnerabilities in 2021.” 

Read More on The US Sun

BE AMAZED

Americans can see Northern Lights aurora tonight - maps show best spots

BRING HIM HOME

Missing boy's pal fears he's at a religious commune & sends captors message

Loder was referring to an update to Twitter’s code in June 2021 that resulted in this year’s breach. 

It was not immediately clear why his account was suspended.