Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense

5.4 million Twitter accounts reportedly on sale in hacking forum

The social media site is currently investigating the authenticity of claims that 5.4 million accounts have been breached and are for sale on hacking forums

Add bookmark
Olivia Powell
Olivia Powell
07/27/2022
5.4 million Twitter accounts reportedly on sale in hacking forum

Social media site Twitter has allegedly suffered a data breach of more than 5.4 million accounts that are now for sale on a hacking forum.

The hacker, who goes by the alias ‘devil’, claimed in a post on Breach Forums that the data stolen includes email addresses and phone numbers from “celebrities, companies, randoms, OGs, etc”. ‘OGs’ refers to Twitter handles that are either short, comprising of one or two letters, or a desirable word, like a first name. 

Devil reportedly will not be accepting offers “lower than [$30,000]” for the database. The hacker also shared a sample of the data, which, according to privacy resource center Restore Privacy, “match[es] up with real-world people that can be easily verified with public profiles on Twitter”.

A few hours after the post was made on Breach Forums, the owner of the site verified the authenticity of the leak and that the data breach was the result of a vulnerability on Twitter that was discovered in January of this year.

The vulnerability was discovered by zhirinovskiy, who submitted a report about it to vulnerability coordination and bug bounty platform HackerOne.

“The vulnerability allows any party without any authentication to obtain a twitter ID (which is almost equal to getting the username of an account) of any user by submitting a phone number/email even though the user has prohibited this action in the privacy settings. The bug exists due to the process of authorization used in the Android Client of Twitter, specifically in the process of checking the duplication of a Twitter account,” explained zhirinovskiy.

Zhirinovskiy went on to describe the potential harms this vulnerability could cause as it would allow “any attacker with a basic knowledge of scripting/coding [to] enumerate a big chunk of the Twitter user base” and use the data collected to create a database that linked Twitter usernames to their respective email address or phone numbers. This database could then be sold “to malicious parties for advertising purposes, or for the purposes of targeting celebrities in different malicious activities.”

The vulnerability was discovered on January 1st 2022, with Twitter verifiying the vulnerability on January 6th and paying zhirinovskiy to $5,040 patch the issue on January 13th. Zhirinovsky verified that the vulnerability had been solved that day.

Twitter has confirmed that it is investigating the data breach as of July 24th 2022, but has not said anything further on the matter. 

Tags: Twitter data data breach hacker White Hat hacking

Recommended

info@cshub.com/r/n

We hope you enjoy All Access from CS Hub!!<\/p>\r\n<p>Best Regards,<\/p>\r\n<p><a href=https://www.cshub.com/"https:////www.cshub.com///" target=\"_blank\">CS Hub Team<\/a><\/p>\r\n<p>P.S. Be sure to check out our other upcoming <a href=https://www.cshub.com/"https:////www.cshub.com//events?filter_format=ONLINE\%22 target=\"_blank\">All Access events here<\/a>.<\/p>\r\n<p>--------------------------------<\/p>\r\nConnect with us on Social Media: <a href=https://www.cshub.com/"https:////www.linkedin.com//groups//12067996///" target=\"_blank\">LinkedIn<\/a> | <a href=https://www.cshub.com/"https:////twitter.com//CSHubUSA/" target=\"_blank\">Twitter<\/a><\/p>\r\n<p>--------------------------------<\/p>\r\n<p>FAQS<\/p>\r\n<p><b>Can I invite my colleagues?<\/b><br>Yes of course! Please send them this link so they can register for free! [WebUrl]<\/p>\r\n\r\n<p><b>How do I access the sessions?<\/b><br>\r\nAll Access is run on Zoom Events. You should receive an email shortly from Zoom Events with your unique All Access link to the event lobby. Please hold on to that email ahead of the event. We\u2019ll also send you a reminder 24 hours before we go live!<\/p>\r\n\r\n<p><b>Will the agenda be updated?<\/b><br>\r\nYes, the agenda will be continuously updated on the website with the latest sessions & speakers. As we get closer to the event, also look out for our weekly updates which will also include the latest updates information and link to access the event.<\/p>\r\n<p><b>Can I access the sessions On Demand?<\/b><br>\r\nEvery session will be available after the event via the event lobby. We\u2019ll also send you a reminder about the On Demand sessions which will be sent to you after the event is over.<\/p>\r\n<p>--------------------------------<\/p>\r\n<p>RELATED RESOURCES TO READ BEFORE YOUR EVENT<\/p>\r\n<ul>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//executive-decisions//reports//cs-hub-mid-year-market-report-2022?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CS Hub Mid-Year Market Report 2022<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//ciso-strategies-for-proactive-threat-prevention?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CISO strategies for proactive threat prevention<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//how-to-strengthen-email-security-and-protection-against-advanced-ransomware-attacks?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">How to strengthen email security and protection against advanced ransomware attacks<\/a><\/li>\r\n<\/ul>","event_registration_srs_confirmation_email":null,"assets_from_cdn":true},"bant_disabled":1,"sponsorship_disclaimer":null,"sponsorship_disclaimer_text":null,"sponsorship_disclaimer_checkbox_disabled":0,"ext_treat_id":null,"recording_url":null,"file_attachment":null,"ingo_enabled":0,"ingo_activator_id":null,"ingo_autofiller_id":null,"ingo_amplifier_id":null,"ingo_authorizer_id":null,"restricted_content":0,"featured_events_embedded":[],"featured_content_embedded":[{"id":"5d7fc01ae3899108ea272c29","name":"Behind The Data Breach: Understanding Cloud Security And Misconfigurations","description":"A Look Into Cloud Services And The Shared Responsibility Model","file":null,"url":"\/cloud\/articles\/behind-the-data-breach-understanding-cloud-security-and-misconfigurations"},{"id":"61bc9e513120253b9c4554e3","name":"The state of cloud configuration security practices","description":"Find out where organizations need to focus their efforts to secure their cloud applications as revealed by the results of Cyber Security Hub\u2019s Cloud Configuration Security Practices survey","file":"https:\/\/eco-cdn.iqpc.com\/eco\/files\/channel_content\/posts\/the-state-of-cloud-configuration-security-practices-concourse-labs-cs-hubFV4L0gNX2sKY1sQsuKbnaJ7Hp3JTOxfgTtVxTRuu.pdf","url":"\/cloud\/reports\/the-state-of-cloud-configuration-security-practices"},{"id":"62d6ca6c7abb6a71c85d8860","name":"Albanian government falls prey to \u201cunprecedented and dangerous\u201d cyberattack","description":"The country of Albania has been forced to temporarily suspend its government sites following an attack on government IT systems","file":null,"url":"\/attacks\/news\/albanian-government-falls-prey-to-unprecedented-and-dangerous-cyberattack"},{"id":"62cefa9eba4e7223597b6215","name":"IOTW: Marriott International suffers latest in series of data breaches","description":"Hospitality company Marriott International reports data breach result of social engineering hack","file":null,"url":"\/attacks\/news\/iotw-marriott-international-suffers-latest-in-series-of-major-data-breaches"},{"id":"62e163ec41618908fd2621ca","name":"IOTW: Uber reaches settlement following cover up of data breach","description":"The ride-sharing app has admitted to covering up a major data breach in 2016 that affected 57 million users","file":null,"url":"\/attacks\/news\/iotw-uber-reaches-settlement-following-coverup-of-data-breach"}],"featured_content_portal_embedded":null}" >

FIND CONTENT BY TYPE

News Case Studies Interviews White Papers Videos

Cyber Security Hub COMMUNITY

About Us Power10 Contact Us Advertise with us Cookie Policy User Agreement Become a Contributor All Access from CS Hub Become a Member Today Media Partners

ADVERTISE WITH US

Advertise Now

JOIN THE Cyber Security Hub COMMUNITY

Join CSHUB today and interact with a vibrant network of professionals, keeping up to date with the industry by accessing our wealth of articles, videos, live conferences and more.

Cyber Security Hub, a division of IQPC

© 2026 All rights reserved. Use of this site constitutes acceptance of our User Agreement, Privacy Policy and Cookies Settings.

Careers With IQPC | Contact Us | About Us | Cookie Policy