GoDaddy admits giving up info that led to Twitter username extortion

Share this article:

When Naoki Hiroshima had his coveted @N Twitter username stolen in an elaborate extortion plot involving simple social engineering techniques, the frustrated developer pointed the finger at GoDaddy and PayPal for being careless with his data.

In a post, Todd Redfoot, Chief Information Security Officer with GoDaddy, explained that the attacker had a large amount of Hiroshima's information when he contacted GoDaddy. “The hacker then socially engineered an employee to provide the remaining information needed to access the customer account,” Redfoot said.

While GoDaddy is taking measures to ensure a similar incident does not occur, PayPal has taken a stance it did nothing wrong.

“PayPal did not divulge any credit card details related to this account,” according to a post. “This individual's PayPal account was not compromised.”

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Adobe exploit used to spread Dyre credential stealer

Adobe exploit used to spread Dyre credential stealer

Users running vulnerable Adobe software could be in danger of having credentials for Bitcoin websites stolen.

Staples is investigating a potential issue involving credit card data

Staples is investigating a potential issue involving credit ...

The company said it is investigating a potential issue involving credit card data and that customers are not responsible for fraudulent activity on cards if an issue is discovered.

Skills set a priority over legacy prejudices, experts say

Skills set a priority over legacy prejudices, experts ...

Cybersecurity expert Winn Schwartau and Robert Clark, a cyber law attorney at the Army Cyber Institute, discussed issues around hiring in the information security industry.