Video of Twitter being hacked: tweets without Captcha

In: Web

Posted by Geries Handal

7 Jan 2009

Here is the video of Twitter being hacked by GMZ:

Apparently GMZ (the hacker and a 18 student) used a dictionary attack to login in into a Admin account. How was this possible? Well if you try to log in into Gmail or Hotmail and failed for x number of time, then you are ask to confirm that you are human using captcha. Twitter didn’t have this feature, therefore anybody (in this case GMZ) ran a script overnight and guessed the password by brute force.

Like I said it before, twitter needs to go back to beta. By the way, if your site doesn’t have something from preventing this attack, you know now what can happened.

Want to read more about the topic, here are some links to:

The Register and Wired

Comment Form

About this blog

A personal blog where I write about my current projects, work and interests. The posts are a reflection on my current self, varying over time, since change is the only constant.

Welcome to G To The Square, my thoughts on ICT, Business and Life... in a Square.

Categories

Archives

  • Leo: Thanks! This worked, but time will tell if I’ll have to keep doing this over and over and over… [...]
  • Geries Handal: Hahaha I guess it will take some time to get those billion dollars. If I understood correctly you [...]
  • David: Get your billion dollars yet? :) Anyways, I have a cousin with this same error code issue for we [...]
  • Geries Handal: Your very welcome! and thanks for your kind comments. ;) [...]
  • Donell KoolbreezeUK: Dear Mr Geries Handal, May god bless you a long healthy life and may he install a billion dollars [...]

Copyright © 2008 -2009 - G to The Square - is proudly powered by WordPress | Log in

Compositio Theme is created by: Design Disease brought to you by PremiumThemes.com