Hacked A.P. Twitter Feed Sends Erroneous Message About Explosions at White House
By NICOLE PERLROTH and MICHAEL D. SHEAR NY TIMES
The Twitter account of The Associated Press was hacked on Tuesday and erroneously sent out a tweet saying there had been explosions at the White House, injuring President Obama.
Within a few minutes, Twitter suspended the account, and Julie Pace, the chief White House correspondent for The A.P., announced at a White House briefing that the account had been hacked.
Jay Carney, Mr. Obama’s press secretary, confirmed that the president was unharmed.
Editors at The A.P. soon followed with a statement saying that “The (at)AP twitter account has been hacked. The tweet about an attack at the White House is false. We will advise more as soon as possible.”
The Dow Jones industrial average plummeted more than 150 points when the news broke on Twitter — an indicator of traders’ presence on the social media platform — before immediately recouping the losses after it became clear that there had been no incident at the White House.
The A.P. typically uses Social Flow, a social media tool, to distribute tweets. But in this case, the attackers posted directly from the Web, according to the meta data associated with the tweet.
In the past few days, The A.P. discovered that malware had infected some of its company computers, according to a spokeswoman. Hackers can use malware to gain a foothold inside a company’s computer network and from there, can gain access to a company’s usernames and passwords to e-mail, administrative and social media accounts.
Shortly after the account was suspended, Mike Baker, a reporter for the news organization, posted a message saying that the attack may have originated with a spear-phishing campaign, in which attackers send a cleverly disguised e-mail from a friend, or work contact, that contains a malicious link or attachment.
Through a Twitter account, a group called the Syrian Electronic Army took credit for the attack.
That Twitter account is linked to the Web site Syrianelectronicarmy.com, a Syrian language Web site that broadcasts what the group says are its latest cyberattacks. Even as the Twitter accounts for @AP and @AP_Mobile were suspended Tuesday afternoon, the account for the Syrian Electronic Army was still live.
This is the third high-profile corporate account to be hacked in recent months. In February, Burger King’s Twitter account was hacked, the company’s logo was replaced by a McDonald’s logo and rogue announcements began to appear. A day later the Twitter account for Jeep was also attacked.
But the attackers used The A.P.’s Twitter account for more nefarious means. Within seconds, the erroneous A.P. headline about explosions at the White House had spread all over Twitter and been retweeted hundreds of times.
The incident, and hacking episodes before it, continue to raise questions about the security of social media passwords and the ease of access to brand-name accounts. Logging on to Twitter is the same process for a company as it is for a consumer, requiring just a user name and one password.
Twitter has tried to take an active role in ridding malicious content from its platform. It has manual and automatic controls in place to identify malicious content and fake accounts, and last year the company sued those responsible for five of the most-used spamming tools on the site.
But preventing hacking and identifying fake accounts continues to be more art than science. Security researchers estimate that as many as 20 million Twitter accounts on the platform are fakes, and real accounts continue to be catnip for hackers.
No comments:
Post a Comment