|This is did not really happen.|
The tweet was not true, however. AP's Twitter account (@AP) was hacked, and the culprits posted the bogus headline without AP's consent.
"Moments later," reports NBC News, "the @AP Twitter account — with nearly 2 million followers — was suspended. Immediately following the false tweet, the Dow Industrial Average lost about 140 points. These losses were immediately recovered."
Who did the hack job on AP? There is speculation now that it was the pro-Assad Syrian Electronic Army, according to the Quartz website.
AP's Mike Baker posted a screen shot (below), showing another hacked AP tweet that bragged, "Syrian Electronic Army Was Here."
The URL (web address) for the AP profile is (or was) twitter.com/ap. Attempting to go to that address, however, now takes you to twitter.com/account/suspended.
|Twitter screen shot by @MikeBakerAP|
NBC also reports that CBS News social media accounts for "60 Minutes" and "48 Hours" were hacked into on Saturday. There is no known connection between those events and today's hacking of AP's Twitter account. However, Foreign Policy reports that the SEA "defaced the homepages of Al Jazeera and Reuters last year, and more recently they've been targeting social media accounts in particular. Last month, for instance, they got into the BBC's weather feed. In the past week alone, they've hit NPR and 60 Minutes. They've also gone after non-media targets, including Human Rights Watch and Columbia University."
How do hackers compromise sites like AP, CBS News, and Twitter? "When hackers compromise a site with weak security," writes Quartz today, "they get their hands on huge databases of password and email address pairs. Then, when they want to attack a site with good security, like Twitter, they simply try out passwords gained in the previous attack. It works because the passwords are often the same across sites—i.e., humans are lazy."
Quartz also notes that "if Twitter wants to get serious about the astonishing amount of hacking that happens on the site, it really needs to implement another layer of security. Google has already, and so has Microsoft: It’s called two-factor authentication." Twitter's attempt just three days ago to deal with the SEA have not stopped them from continuing to hack Twitter account. On April 20, Twitter suspended the SEA account.
- What Is the Syrian Electronic Army? Mashable
- Twitter plays cat-and-mouse with hackers of the Syrian Electronic Army Naked Security
- How the Syrian Electronic Army hacked the AP—and who are these guys, anyway? Quartz
- Articles about the Syrian Electronic Army Infowar Monitor
- Twitter Keeps Deleting Accounts of Syrian Electronic Army Softpedia News
- Syrian regime unleashes online propaganda campaign (with video) France24
- Syrian Electronic Army: Disruptive Attacks and Hyped Targets OpenNet Initiative
- The Syrian Electronic Army are at Cyber War with Anonymous Vice