Twitter has released a statement acknowledging that in December 2020, a coding error resulted in a data breach of user information. A hacker exploited the flaw before it was discovered and subsequently patched in January 2022.
The vulnerability allowed malicious actors to submit an email address or phone number to verify if it was associated with an existing Twitter account. Hackers could then access the associated account ID, linking the information together.
A researcher uncovered the coding flaw through Twitter’s Bug Bounty program. The social media giant claimed that the vulnerability hadn’t been exploited before engineers were made aware of the issue. However, a hacker who contacted the website Bleeping Computer disputed the official narrative, claiming to have gained access to over 5.4 million user accounts via the flawed code and offering to sell the data for $30,000.
After reviewing the compiled database, Twitter responded with an official statement:
“Because we can’t verify every account that may have been affected, we’re releasing this alert because we’re particularly concerned about people using pseudonymous accounts who may be targeted by the state or other actors. If you use a pseudonymous Twitter account, we realize the hazards that an occurrence like this might bring and we profoundly regret that this happened.”
Owners of accounts that have been compromised due to the data breach will be notified by direct message from Twitter, with the company advising those who wish to remain anonymous online not to associate a publicly available email or phone number with their account.
Because two or more individuals have already purchased and gained access to the leaked data, users should be wary of targeted phishing scams trying to gain access to login credentials. Although no passwords were revealed during the initial breach, Twitter advises all users to adopt two-factor authentication for an extra layer of security.
World’s Largest Metaverse Developer Opens Dubai Office
LandVault, the largest metaverse creator, is expanding its presence into the MENA region.
LandVault, the world’s largest metaverse developer, will expand operations to Dubai later this month as part of an ongoing strategy to boost its presence in the MENA region. The company aims to help local businesses gain a foothold in the expanding web 3.0 universe and sees exciting opportunities to bolster its client portfolio.
So far, metaverse developer LandVault has lived up to its name, creating and curating over 100 square feet of virtual space for a diverse range of organizations, including the nearby Yas Marina Circuit, Aldar, Mastercard, Standard Chartered, World of Women, Hershey’s, and many more.
The Dubai government’s Metaverse Strategy is one of the key reasons LandVault has been inspired to move to the region, as leaders plan to transform the Emirate into one of the world’s top 10 metaverse economies by 2030. Eventually, it’s hoped that in excess of 1,000 companies in the blockchain and web 3.0 spaces will be inspired to set up entities in the region, creating around 40,000 new jobs in the process.
“We are excited to open our office in Dubai and to be a part of the vibrant tech community in the UAE. The MENA region is a key market for us, and we believe that our presence in Dubai will allow us to assist the region and explore new opportunities. We are also excited about the potential for the metaverse in the real estate industry in the UAE. We look forward to working with developers and real estate companies to showcase their properties in a new and innovative way,” says Sam Huber, CEO of LandVault.
Alongside developing the metaverse from its new Dubai office, LandVault will also deploy its technology to assist the UAE’s real estate sector. Developers will soon be able to showcase their projects in a way that was never previously possible, reaching a much wider audience with immersive and interactive property tours and even virtual showrooms.