Remember we recently posted about a three-man “security team” called OurMine that had hacked Google CEO Sundar Pichai’s Quora account? Well, they’re at it again, this time taking over Twitter founder and CEO Jack Dorsey’s – you guessed it – Twitter account.
The now-standard “Hey, it’s OurMine, we are testing your security, visit ourmine.org” message went up on Dorsey’s Twitter feed last night at 2:50 AM EST. The tweet had OurMine’s other calling card, an embedded video of their rather silly theme song. While that tweet was quickly deleted, many more followed.
Dorsey seems to have permanently regained control of his Twitter feed around 45 minutes later. But it’s yet another embarrassing hack for a high-profile tech personality, especially for the one that sent the world’s first public tweet a decade ago. OurMine often take pot shots at their victims for their weak passwords, with Mark Zuckerberg getting called out for using ‘dadada’ as his Twitter password.
As with OurMine’s other hacks, it looks as though they didn’t get access to Dorsey’s Twitter account directly. Rather, they look to have accessed another social media account, either with a shared password or with posting rights to Twitter. All of the posts on Dorsey’s feed came via Vine. The same was true of Sundar Pichai’s Twitter hack – posting rights came from an old Quora account.
As always, use strong passwords, get a password manager, don’t use the same password everywhere and change them regularly. Although, unless you’re the founder or CEO of a major tech company, maybe your risk of getting hacked is a little lower. With OurMine’s impressive track record, it’s only a matter of time before they get caught or run out of tech celebrities to hack.
Have you ever had an account hacked? How do you manage passwords?