Well, 2023 is off to a rousing start. This morning I learned that my personal information was pilfered as part of the recent Twitter data breach that leaked the email addresses, phone numbers, and other identifying data of over 200 million users. That sucks, but here’s what really sucks: Twitter didn’t tell me about it. So far, the Elon Musk-led social media company hasn’t actively notified users (or at least me) of the worrying situation.
Instead, I woke up to an ID Alert notification from American Express, saying my personal info was found on the Dark Web on January 6. Great.
Passwords aren’t known to be part of the breach, but a hack like this has significance—as American Express’s warning spells out. The bandits could use the information to perform clever spear phishing or social engineering attacks as well as relentlessly spamming you, fully confident that youspecifically are the mark.
And given the nature of Twitter itself these days, I’ll also echo my colleague Alaina Yee’s advice:
“Improving your Twitter security in particular might be a wise idea, given the company’s upheaval since its change in ownership. Since Musk’s takeover, much of the company was gutted, leaving a severely reduced workforce to grapple with site management—and no communications team to alert users to problems. These days the social media platform is far less trustworthy and you’re on your own if you stay.”
Brad Chacos spends his days digging through desktop PCs and tweeting too much. He specializes in graphics cards and gaming, but covers everything from security to Windows tips and all manner of PC hardware.