GoDaddy admits giving up info that led to Twitter username extortion

Share this article:

When Naoki Hiroshima had his coveted @N Twitter username stolen in an elaborate extortion plot involving simple social engineering techniques, the frustrated developer pointed the finger at GoDaddy and PayPal for being careless with his data.

In a post, Todd Redfoot, Chief Information Security Officer with GoDaddy, explained that the attacker had a large amount of Hiroshima's information when he contacted GoDaddy. “The hacker then socially engineered an employee to provide the remaining information needed to access the customer account,” Redfoot said.

While GoDaddy is taking measures to ensure a similar incident does not occur, PayPal has taken a stance it did nothing wrong.

“PayPal did not divulge any credit card details related to this account,” according to a post. “This individual's PayPal account was not compromised.”

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Beazley: employee errors root of most data breaches, but malware incidents cost ...

Insurance firm Beazley analyzed more than 1,500 data breaches it serviced between 2013 and 2014.

Apple issues seven updates, fixes more than 40 vulnerabilities in iOS 8, OS 10.9.5

Apple issues seven updates, fixes more than 40 ...

In one of its infrequent "Update Surprisedays," Apple plugged holes, boosted security and added features.

Canadian telecom co. Telus unveils first transparency report

The company received more than 100,000 government requests for customer data last year.