Hackers Can Break Into Your Social Accounts Without Access To Your Password

Early on Wednesday morning, prominent Twitter accounts were compromised. These verified, professional accounts such as Amnesty International, Duke University just to name a few, were most likely protected by good security practices such as strong passwords and two factor authentication. But it seems hackers have gotten around this by simply accessing app permissions.

If you log into an app or service using your Twitter, Google or Facebook account instead of creating a username and password, you’re likely opening up the back door via app permissions. While this feature seems convenient because you don’t have to set up and remember a bunch of logins/passwords, and is sometimes necessary for apps that tie in directly with your account, it also becomes a security liability.

An app called “Twitter Counter” that is designed to give users analytics data of their accounts seems to be the source of the recent hack. The app not only requests to see data but also to be able to Tweet. This may seem innocent enough as it could be used to tweet out data from within the app. It appears hackers had compromised Twitter Counter and used the access to send out their own Tweets. …

Source: Hackers Can Break Into Your Social Accounts Without Access To Your Password – UTB Blogs

Share

Leave a Reply