True account hacking is been happening since ages but nobody tried to mint money through this way. Also, can you share some light on social engineering attack?

https://youtu.be/xUpJ0GbNqFo

Noted will check your video. Can you share some points out of your video?

sure! This video is all about how someone could manipulate you over online, collect informations with your Instagram and what someone could do with it etc. Social engineering is basically all about manipulating you, it could be over a phone call or a scamming mail you get!

o it means they manipulate you to share some important credentials and then these hackers use it to hack?

yeah. It could be credentials or asking you click a link or it could be anything. The possibilities are endless.

Oh it means nowadays companies should try to keep their important information away from all the electronic devices used by the employees?

Maybe the employees should not log in into anything personal and keep those devices at the office after using it.

yes! But due to WFH, it would be a very difficult for organisations like twitter to do that.

Let’s say I’m targeting twitter.

1. I’ll go check for the employees.
2. Assume, I found a HR.
3. HR usually opens all the docs, excel sheets when they receive it via mail.
*that doc isn’t a normal doc, it’s an exploit*
4. HR opens it, it would look like a normal doc but it’s not, it would infect ur pc completely and give access to the attacker.

This is one scenario but there are many.

So twitter can do basic training for dummies and this might help them reduce the chances of the same.

yeah yesh, they should. They should’ve done too. Also, we cannot blame these organisations too, this happened with sony too. These are sophisticated attacks. Well planned one though!😀

Yes we can't blame them as they are well-planned attack but training helps in reducing the chances.

true

I think nowadays every company who uses tech should do this, hackers can do a DDOS attack just for fun also.

Haha, true true! Back in those people do it for fun!😂but, every organisation’s employee should have a basic knowledge of what to do and what not to do. Especially at times like these.

true employees should. A few years back, one of the startups for whom I was working, had kept the backdoor of the website open and some hacker for fun did mischief with it.

😂

It was a very small company, they had just started so it didn't make any huge difference but I have seen a website which was hacked and turned into a movie hosting website.

lol. Nowadays, people started making money out of bug bounty. But yeah it happens.

True it does

Hey Anand so how did you respond to that?

Anything and everything created by a human is hackable, there is nothing such as hackproof. Not today but tomorrow somebody smarter then you will take birth and change the game.

Hi Bhavik,

You have a point.

I told my prosoect that the Blockchain system cannot be hacked on the fly.

However, phishing attacks and scammers exist in every domain. You fall for it, it's your problem not the Technology at fault.

Since he checked with me I have told him what it is!

Even the CryptoWallet folks can't help you if you have done the transaction. The transaction is done by you! However, you can trace the rogue address and wallet through concerted efforts and perseverance. Then comes the legal action part - this is still a grey area.

Like Scammers and Hackers rise, the Counter Ops and plugs are also initiated. Part of Evolution!

Prevention is better than cure!

This is where creating the right awareness becomes the responsibility of the organization promoting such schemes.

I think the people who were used as pawn were the employees of Twitter.

I agree with the vulnerability part.

Yes awareness is one of the biggest tool to defend

Twitter handles & Instagram are most preferred & loved platforms these days so they are the favourite targets of hackers. Plus, some darknet websites provide Zero-day Vulnerability Information in exchange of some bitcoins.

The point is that becoming atarget to such attacks has become very easy. Even if there are layers of protection, the security of the account is not in our hands.

We should limit our preference to social media so that it doesn't become a pain point when it's targeted.