Few days back when the 10th Anniversary of the Twin Tower Attacks were approaching, NBC News’s twitter account was hacked and a Fake message was posted which read the following:
Breaking News! Ground Zero has just been attacked. Flight 5736 has crashed into the site, suspected hijacking. More as the story develops,
This was a result of NBC’s twitter account getting compromised by a hacker group called Script Kiddies.
The hacked account was shut down immediately and NBCNews’s Digital Officer Vivian Schiller tweeted confirming that their official account had been hacked, and asked followers not to retweet any of the offending messages:
Today I will tell you how exactly the twitter account of NBC News is believed to have got hacked.
How NBC News Twitter Account Was Hacked
I will list down the whole scenario of the hack in a simple to understand list.
- Email Account associated with the Twitter Account was Hacked via a Keylogger.
- An Email with the Trojan attached was sent to Ryan Osborn, Social Media Director of NBC News.
- The Keylogger recorded the password of twitter account and sent it back to hacker.
- Hacker used the credentials to login and update tweets.
Detailed Report of The Event.
Ryan Osborn said that he had received an Email some time back which had the following content:
Ryan, You need to get off TWITTER immediately and protect your family from the hurricane. That is an order.
Upon not understanding the meaning of the Email, Ryan replied to the email asking “I’m Sorry. Who is this?”. He got a reply to his question which reads as follows “I’m the girl next door”. The reply had a file attached with it, Out of curiosity Ryan downloaded and opened the Email Attachment which had an Image of a ‘Christmas Tree’.
The image was attached with a Trojan Horse, Which installed a Remote Keylogger on Ryan’s computer which recorded him logging into the twitter and sent the password to the script kiddies. Resulting in the account being compromised.
Though the credit again goes to Ryan for spotting the hack immediately and also to twitter who suspended the account within span to prevent retweets and other complications related to the fake tweet.
As of now The FBI is investigating the issue and scanning through the emails might provide some valuable data to them.
Tweets and Re-Tweets of the post is appreciated! 🙂