digg

Facebook Connect Join Digg About

Hacker: I Broke Into Twitter

pcworld.com A French hacker posts 13 screenshots of a Twitter product manager's admin interface to prove the claim.

Who dugg this? Made popular May 1, 2009

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

125 Comments

show profanity settings
expand all
  • inactive, on 05/01/2009, -3/+98Hacker: I Broke Into Twitter, Making Poop Now
  • theaverageidiot, on 05/01/2009, -4/+72Twitter wasn't hacked. An admin was retarded and had a Yahoo account with an easy "secret question", which he guessed and got the password to the Twitter account through an email. This isn't hacking, this is people with nothing better to do figuring out stupid questions.
  • chadsmith729, on 05/01/2009, -14/+65Twitter ***** sucks!

    Follow me at: http://www.twitter.com/chadsmith729
  • kaiserollofdoom, on 05/01/2009, -1/+46Here is the actual important forum post with all the pictures.
    http://www.zataz.com/forum/index.php?showtopic=100 ...
  • PicklePower, on 05/01/2009, -1/+32Too bad they didn't view the report that shows statistics on how many people are registered on Twitter and how many are active users. As far as I know, those numbers have never really been released...
  • Elohir, on 05/01/2009, -1/+21Yes, because real super duper intelligent hackers would have spent weeks analysing the site and infrastructure, brute forcing accounts, trying to get keyloggers onto his machine, finding SQL injection holes, and innumerable other methods instead.

    Only someone REALLY dumb would have spent 5 minutes guessing dogs names to achieve the same goal.
  • youri, on 05/01/2009, -11/+29I know someone that knows someone that hacked into digg once. They looked at their frontpage story algorithm, apparently it only allows stories from a list "approved" sources. There are more things like that, some websites get preference over others etc.

    Here's one place that talks about the censorship: http://chrysler5thavenue.blogspot.com/2009/03/digg ...
  • andrewlotta, on 05/01/2009, -4/+21To hack is "to gain access to a computer illegally". Just because he did it without a program solely used for figuring out passwords does not make it anything less than hacking.

    There is ALWAYS a response like yours in submissions regarding hacking.
  • reyesz, on 05/01/2009, -1/+18ok poop is coming out
  • RumpleForeskin3, on 05/01/2009, -0/+15sacre bleu!
  • markbosky, on 05/01/2009, -1/+14http://img244.imageshack.us/my.php?image=twitter03 ...
    http://img244.imageshack.us/my.php?image=twitter04 ...
    http://img244.imageshack.us/my.php?image=twitter06 ...
    http://img244.imageshack.us/my.php?image=twitter07 ...
    http://img244.imageshack.us/my.php?image=twitter10 ...
    http://img244.imageshack.us/my.php?image=twitter11 ...
    http://img244.imageshack.us/my.php?image=twitter14 ...
    http://img244.imageshack.us/my.php?image=twitter16 ...
    http://img244.imageshack.us/my.php?image=twitter19 ...
    http://img244.imageshack.us/my.php?image=twitter23 ...
    http://img244.imageshack.us/my.php?image=twitter26 ...
    http://img244.imageshack.us/my.php?image=twitter27 ...
    http://img244.imageshack.us/my.php?image=twitter28 ...

    *I wonder where/what the missing screenshots are
  • offon, on 05/01/2009, -1/+13Make some damage to show us some proof.
  • lintmonkey, on 05/01/2009, -0/+11That's racist.
  • theaverageidiot, on 05/01/2009, -1/+12Wow. Understanding concept of hacking fail.
    This has nothing to do with Twitter, it's user security.
  • offrdbandit, on 05/01/2009, -0/+9I guess the Admin Console didn't have a "Kick All Twitter Users in the Nuts" button. Disappointing, really.
  • Hedison, on 05/01/2009, -1/+9Not really surprised. Twitter has been hacked before
  • Taiyoryu, on 05/01/2009, -0/+8It's always easier to social engineer than it is to directly circumvent security measures. The weakest link in any security system tends to be the people.
  • covertbadger, on 05/01/2009, -1/+9Seriously, it's amazing how many people just don't understand the basics of digg. It's like they don't know the bury button exists.
  • McNash, on 05/01/2009, -1/+8From the forum:
    "Hello,

    Impressive to see how this message (above) was pumped, copied, ... by a host of blogs, see the sites (newspapers) very important.
    The message Hacker Croll an article is not verified, monitored, ... by zataz.com.
    It's just a post from a stranger, a user who may have enjoyed to make a fake, a joke.
    Like any message on a forum, so take it with tweezers.
    We asked for explanations from the poster as evidence.
    A follow (url to users website removed) and on the forum."

    Take it out with tweezers.
  • UK31337, on 05/01/2009, -0/+7Idiots at Twitter for having an admin interface on a public server with such an obvious subdomain. They should be limiting it by IP ranges at the *very* least, better still not having it at all and having back-end desktop tools at the office for that sort of thing.

    Twitter's security is horrendous as we've already seen; I hate it anyway but this just puts me off using it completely.
  • freezerburn666, on 05/01/2009, -2/+9good, break into it and shut it the ***** off.
  • cheddaro, on 05/01/2009, -0/+6This is the most disappointing "hack" I've ever seen make the news.
  • TwistyMcFister, on 05/01/2009, -5/+11What is Twitter and why do I care?
  • mywhitenoise, on 05/01/2009, -1/+7LOTS of people love American Idol, I blame peoples lack of intelligence and ***** taste on music because of it. The world would be better without Twitter, Facebook, and reality TV.
  • inactive, on 05/01/2009, -3/+9I have to agree.

    That's not hacking.
  • inigomntoya, on 05/01/2009, -0/+5No. Its cool. I have friends that are white, so its all good...
  • sickthoughts, on 05/01/2009, -0/+5Technically it's not a dupe because it's from a different source. But I feel your anguish.
  • amitait, on 05/01/2009, -0/+5RT @jeffvvisoft Hacker: I Broke Into Twitter, Making Poop Now
  • inigomntoya, on 05/01/2009, -1/+6inigomntoya: hatin on twitter. tweet tweet!
  • theaverageidiot, on 05/01/2009, -2/+7In fact, it's embarrassing that he's being sensationalized into a hacker. I'm sure many real hackers are insulted that doing nothing is now considered hacking. Real hacking is very difficult and anyone who puts time into it, as I know, get very pissed when people who do nothing get recognized as such.
  • Philbert, on 05/01/2009, -0/+5Twit means the same thing here in the US. That's why the name of the show TWiT (This Week in Tech) is funny.
  • MrDoug, on 05/01/2009, -2/+7I'm more impressed that the Fail Whale didn't show up as a result...
  • kwasmosis, on 05/01/2009, -0/+5Okay, for real? What is wrong with this supposed IT professional, who would actually use a word as their password? A password should look more like you slammed your fist into your keyboard a couple times.
  • Myztry, on 05/01/2009, -1/+6I can't bring myself to get into twitter. In Australia, a twit is a dumb/moronic person - so it follows that a twitter is someone who does dumb/moronic things.
  • lostradamus, on 05/01/2009, -0/+4What is your favorite hobby?
    > bowling: Access Denied
    > stamp collecting: Access Denied
    > masturbating: Access Granted
  • inigomntoya, on 05/01/2009, -0/+4Exactly! All they have to do is look through their member's activity to see who did it...
    Hacker: Changing your twitters to sumtin funny - hehehehehehe
  • inigomntoya, on 05/01/2009, -1/+5Ahh. But would that not make a hacker a cracker? Maybe said hacker would prefer not to become a cracker?
  • covertbadger, on 05/01/2009, -0/+4Dugg up. I've been saying the same thing since the LAST hack. It's inexcusably incompetent - maybe even negligent - to have publically-visible admin interfaces. It shouldn't matter if this hacker managed to get hold of an admin password - he should never have been able to get anywhere near the part of the software that lets him use it.
  • covertbadger, on 05/01/2009, -2/+6"This has nothing to do with Twitter, it's user security."

    Don't be so stupid. Twitter currently allows admin user login through the normal customer login screen. That's a colossal infrastructure failure before you even consider user security. Think about it, why should it be possible for some twerp in France to access the login screen for an admin account? Even if he was able to obtain credentials, he should never be able to get anywhere near a part of the software that will accept them.

    Using the same front-end for customer and administrator login is atrociously lazy, and the fact that they don't have any sort of check that admin requests are originating within the perimeter firewalls is stupider still.
  • jamesmcginnis, on 05/01/2009, -0/+4No, what is it?
  • inactive, on 05/01/2009, -4/+8LOL @ "hacker".

    You aren't a hacker if you guess someone's easy secret question.
  • MScrip, on 05/01/2009, -0/+4For real. Get rid of the phone and e-mail too.... face to face communication is superior.

    You should just gather up all of your friends and go everywhere together... even hold hands to promote togetherness. If you need to talk to someone, just speak out loud and they will hear you because they are always right next to you.

    Instead of sharing your vacation pictures on Facebook.... take all your friends with you to Hawaii.
    Take them everywhere. You won't need a website to communicate with people anymore.

    /s

    Are you for real? Yes, people do stupid stuff on Facebook all the time. But I actually talk to people MORE because of Facebook. It's great if you have friends that live OUT OF TOWN. Strange concept, I know... but after college people MOVE AWAY.

    I still have my close friends that I see all the time. But there are tons more that I don't get to see very often... but I can hear from them through the Internet.

    Were you this annoyed when AIM was all the rage?
  • Myztry, on 05/01/2009, -0/+4My answer to compulsory secret questions is always something like "*****-cnyt8v9tbpvaya8wvoest ew9bvo7r8v;la;tvao9awno8ay7eob7r8oc7twovse8ocowtaeoatrc8btbcy"
  • diggymow, on 05/01/2009, -2/+6If something gets buried enough it won't reach the front page no matter how many diggs it gets. We know this already, there's no conspiracy theory here people.
  • defunctlife, on 05/01/2009, -0/+4Of course Ashton Kutcher has an AOL email address
  • inactive, on 05/01/2009, -0/+4The first thing I looked for in the article were the screenshots. You didn't find those??
    http://www.zataz.com/forum/index.php?showtopic=100 ...
  • inactive, on 05/01/2009, -0/+4Better yet, it's ALWAYS some trivial question.

    "Where were you born?"

    I could casually ask someone, "Hey, where were you born? You remind me of someone I went to school in Florida with..." and they'll bite.
  • mark925, on 05/01/2009, -0/+4That moron admin probably puts his passwords on a post it note and sticks it to his monitor too.
  • gerbilthemonkey, on 05/01/2009, -0/+4Awww mayn, been thumbed down by all them whitehatz
  • borez, on 05/01/2009, -1/+5Interesting this. If you use the FF digg plugin it has a 'Hottest stories' sub list in the drop down menus section and on numerous occasions I've seen a 'hot story' hang there for sometimes two or three days gaining more and more diggs but interestingly never quite making the transition to the front page.

    Now I guess I now why.

    I mean in the grand scheme of things it doesn't really matter ( unless of course you're the site owner ) but it does make you think.
  • Fetching more discussions...
    Show 51 - 100 of 128 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.