ReadWriteWeb reported Wednesday evening that Kutcher’s account — which has 6,393,635 followers — was compromised at TED by another TED attendee. The hacker posted two tweets, the first of which reads:
“Ashton, you’ve been Punk’d. This account is not secure. Dude, where’s my SSL?”
Now, this could be an Ashton trick on his followers, but the following tweet reads:
“P.S. This is for those young protesters around the world who deserve not to have their Facebook & Twitter accounts hacked like this. #SSL“
OK, so it looks like someone is using Kutcher’s account to make a statement. The statement: secure your connections. The note about SSL (Secure Sockets Layer), or lack thereof, implies that the “hacker” didn’t hack a secure connection, but rather sniffed out an unsecured connection. This isn’t terribly hard to do considering the prevalence of amateur hacking tools such as Firesheep, which allows people to hijack another person’s current session (but doesn’t let people grab others’ passwords).
Kutcher’s last pre-hack tweet was “Deb Roy #Ted Wow,” so we can reasonably assume his session was hijacked.