The investigation following the vast Bitcoin scam campaign launched in July on Twitter is progressing in the United States. Police announced the arrest of three suspects suspected of hacking Twitter and 130 social network accounts.
In July, Warren Buffet, the crypto-skeptical investor, momentarily turned into a staunch supporter of Bitcoin. This unexpected rally was, however, the consequence of the hacking of his Twitter account.
A total of 130 very popular accounts, including those of Elon Musk and Barack Obama, had been compromised following the spectacular Twitter hack. This intrusion allowed the attackers to broadcast a free Bitcoin scam campaign.
Bad publicity for Twitter and the crypto industry
This bad publicity for the cryptocurrency industry naturally triggered an investigation by authorities, including the FBI in the United States. And the first arrests intervene. They concern three young men, including a minor.
The sentences could be heavy for the three suspects. The Florida prosecutor has thus brought 30 charges against Graham Clark (17), including those of organized fraud and illegal use of personal information.
Federal authorities are also prosecuting Nima Fazeli and Mason John Sheppard. They are accused of taking advantage of a protected computer in order to commit electronic fraud and money laundering.
Despite a large-scale and high-profile computer intrusion, the Bitcoin scam orchestrated by the suspects would have enabled them to amass only a modest profit. The damage is estimated to be around $ 120,000 in cryptocurrencies.
A media campaign, but a modest booty
Twitter has since provided some clarification on the method used by the hackers. According to the social network, a “small number” of its employees have been victims of a phishing attack on their mobile terminal.
“This attack was based on a major and concerted attempt to deceive certain employees and exploit human vulnerabilities to access our internal systems,” said Twitter.
Some employees, 1000 according to ., indeed have full access to user accounts.
Some of these employees were therefore targeted by the phishing attack. Following this intrusion on its platform, Twitter has also changed its security rules. Thus, “access to its internal support management tools” has been limited in order to guarantee the security of user accounts.