Twitter hackers busted 2FA to access accounts and then reset user passwords

July 22, 2020

Perps tried to sell high-profile usernames after possibly perusing private data.

Twitter has revealed more about the July 15 attack that saw several prominent accounts hijacked to promote a Bitcoin scam.

The Saturday, July 18 update admits “the attackers successfully manipulated a small number of employees and used their credentials to access Twitter’s internal systems, including getting through our two-factor protections.”

You read that right: even 2FA failed.

Complete article at The Register

A strong cybersecurity strategy starts with secure backups in case you ever need to restore your data.  CYF4® – Enveloc® FedRAMP Azure Government Cloud Backup uses the Azure Government Cloud combined with End-to-End AES 256-bit encryption to protect your data.