GoDaddy admits giving up info that led to Twitter username extortion

Share this article:

When Naoki Hiroshima had his coveted @N Twitter username stolen in an elaborate extortion plot involving simple social engineering techniques, the frustrated developer pointed the finger at GoDaddy and PayPal for being careless with his data.

In a post, Todd Redfoot, Chief Information Security Officer with GoDaddy, explained that the attacker had a large amount of Hiroshima's information when he contacted GoDaddy. “The hacker then socially engineered an employee to provide the remaining information needed to access the customer account,” Redfoot said.

While GoDaddy is taking measures to ensure a similar incident does not occur, PayPal has taken a stance it did nothing wrong.

“PayPal did not divulge any credit card details related to this account,” according to a post. “This individual's PayPal account was not compromised.”

Share this article:

Sign up to our newsletters

More in News

Research shows vulnerabilities go unfixed longer in ASP

Research shows vulnerabilities go unfixed longer in ASP

A new report finds little difference in the number of vulnerabilities among programming languages, but remediation times vary widely.

Bill would restrict Calif. retailers from storing certain payment data

The bill would ban businesses from storing sensitive payment data, for any long than required, even if it is encrypted.

Amplification, reflection DDoS attacks increase 35 percent in Q1 2014

Amplification, reflection DDoS attacks increase 35 percent in ...

The Q1 2014 Global DDoS Attack Report reveals that amplification and reflection distributed denial-of-service attacks are on the rise.