Associated Press' Twitter Hack: Would 'two-factor authentication' Help?

iMediaEthics publishes international media ethics news stories and investigations into journalism ethics lapses.

Menu

Home » Hacking»

(Credit: GigaOm, screenshot)

The Associated Press’ Twitter accounts @ap and @AP_mobile were hacked this past week.  The hackers posted to the @ap account a fake tweet on April 23 claiming the White House was attacked and President Obama was hurt.

“Breaking: Two Explosions in the White House and Barack Obama is injured,” the tweet reads, according to GigaOm’s screenshot (above).

On the account @AP_mobile, the hackers posted “Syrian Electronic Army was Here,” Tech Crunch reported.  That group has claimed responsibility for hacking other news sites’ social media accounts, as iMediaEthics has written. We went to Syrian Electronic Army’s Twitter account April 26 to see if the group tweeted about the AP hack, but the account was suspended.

This hack was particularly newsworthy because it affected the U.S. stock market and because it was less than two weeks after the very real Boston Marathon bombing and manhunt for the suspects in the bombings. As the New York Post explained, because of the tweet, the Dow Jones temporarily dropped “146 points in about three minutes, erasing some $42 billion.”

In a statement on the Associated Press website, the AP’s Paul Colford noted that the wire service temporarily “suspended other Twitter accounts out of a sense of caution” because of the hack.  And, on other Twitter accounts, the AP let followers know its account was hacked.

 


 

 

 

The AP ended up suspending all of its Twitter accounts temporarily.

 


 

Later, after the AP got back on the account, it tweeted
 

 

The AP Twitter account was suspended for about 20 hours, GigaOm reported.

The Associated Press also reported on the hack in a news story explaining that the hackers got into the account by phishing.  “The attack on AP’s Twitter account and the AP Mobile Twitter account was preceded by phishing attempts on AP’s corporate network,” the AP reported.

Jim Romenesko published an email from the AP’s Information Security learning about the phishing email a little before the hack happened.  He also posted an email he said was the phishing email, which re-directs to a Washington Post article.

According to the AP, the FBI is looking into the hack.

iMediaEthics wrote to the AP to ask what precautionary measures the wire service is taking in the future and for confirmation of the authenticity of the emails published on Romenesko’s website but spokesperson Paul Colford directed us to the AP’s statement about the hack.

Could Twitter Add an Extra Step ?

According to Bloomberg, an anonymous source suggested Twitter is considering adding a two-step approval practice, which could potentially better secure Twitter accounts.  Under that, tweeters would have to log in not just with a regular user name and password, but also with an extra code, which could be sent to a different device or email.

But, even if the Associated Press had been using a “two-factor authentication” on its tweets, the hack still probably would have happened because the account that was compromised had more than one person tweeting from it, PC Magazine reported.   As PC Magazine explained:

“AP, much like many other organizations, probably had multiple employees posting to @AP throughout the day. What would happen anytime someone tries to post to Twitter? Every login attempt requires the person who has the registered device, whether it’s a smartphone or a hardware token, to provide the second-factor code. Depending on the mechanism in place, this could be every day, every few days, or whenever a new device is being added.”

Further, the AP would most likely not be able to tweet efficiently.  PC Magazine quoted “online identity company‘s OneID’s Jim Fentonas as explaining the two-step tweets would be a “pretty significant roadblock to productivity.”

 

Submit a tip / Report a problem

Associated Press’ Twitter Hack: Would ‘two-factor authentication’ help?

Share this article:

คาสิโน
slot demo
sa gaming
tkb365
https://tkb399.com/login
ทดลองเล่นสล็อต
ทำความรู้จักกับ
คาสิโน
สล็อต
tkb138
ซุปเปอร์สล็อต
sa gaming
https://www.hotelplayagolf.com/es/instalaciones/piscinas
tkb365
บาคาร่า
สล็อตเว็บตรง
บาคาร่า
ทดลองเล่นสล็อตฟรี
ทดลองเล่นสล็อต pg
สล็อตเว็บตรง
tkb138
คาสิโน
ซุปเปอร์สล็อต
tkb138
tkb365
ทดลองเล่นสล็อต
changbet789
สูตรสล็อต pg ทดลองเล่นฟรี
สล็อต ดาวน์โหลด รับเครดิตฟรี
สล็อต
tkb138
https://www.hotelalbora.com/
https://tkb108.co/register
tkb696
เว็บบาคาร่าโดยตรง
changbet789
สล็อตทดลอง
pg
betflix
pg slot
สล็อต
sbobet
tkb138
https://titanium-hotel.com/
สล็อต
tkb138
taokaebet
tkb777
อันดับแรก
คาสิโน
changbet789
แจกเครดิตฟรี 100%
ทดลองเล่นสล็อตทุกค่ายฟรี
สล็อต
changbet789
tkb365
changbet789
finfinbet
changbet789
tkb108
tkbneko
สล็อต
สล็อต
ลองเล่นสล็อต
สล็อต
https://www.gday96.com/
สล็อตเครดิตฟรี
สล็อต888
สล็อต
โป๊กเกอร์ออนไลน์
บาคาร่าเว็บตรง
changbet789
ทดลองเล่นสล็อต pg
ทดลองเล่นสล็อต
ทดลองเล่นสล็อตฟรี
tkb365
tkb365
tkb365
tkb555
tkb555
tkb555
tkb555
tkb555
tkb555
tkb555
tkbking
tkbking
tkbking
tkbking
tkbking
tkbking
thb889
thb889
thb889
thb889
thb889
thb889
thb889
tkb4
tkb4
tkb4
tkb4
tkb4
tkb4
tkb4
tkb9
tkb9
tkb9
tkb9
tkb9
tkb9
tkb9
tkb33
tkb33
tkb33
tkb33
tkb33
tkb33
tkb33
finfinbet
finfinbet
finfinbet
finfinbet
finfinbet
finfinbet
finfinbet
TKB96
tkb96
tkb96
tkb96
tkb96
tkb96
tkb96
tkbfun
tkbfun
tkbfun
tkbfun
tkbfun
tkbfun
tkbfun
tkbpg
tkbpg
tkbpg
tkbpg
tkbpg
tkbpg
tkbpg
tkbpussy
tkbpussy
tkbpussy
tkbpussy
tkbpussy
tkbpussy
tkbpussy
tkbrich
tkbrich
tkbrich
tkbrich
tkbrich
tkbrich
tkbrich
tkbsexy
tkbsexy
tkbsexy
tkbsexy
tkbsexy
tkbsexy
tkb777
tkb777
tkb777
tkb777
tkb777
tkb777
tkb777
taokaebet
taokaebet
taokaebet
taokaebet
taokaebet
taokaebet
taokaebet
tkbsexy
tkbrich
tkbpussy
tkbpg
tkbfun
tkb96
tkb33
tkb9
tkb4
thb889
tkbking
tkb555
tkb365
changbet789
บาคาร่า
ลองเล่นสล็อต
sa gaming
คาสิโนออนไลน์สด
ทดลองเล่นสล็อต
สล็อต
สล็อต
สล็อตเว็บตรง
ทดลองเล่นสล็อต pg ซื้อฟรีสปิน
ทดลองเล่นสล็อต
บาคาร่า
สล็อต เว็บตรงไม่ผ่านเอเย่นต์ไม่มีขั้นต่ำ
ทดลองเล่นสล็อต
ทดลองเล่นสล็อต
สล็อต
บาคาร่า
สล็อต
สล็อต
สล็อต
สล็อต
pg
ทดลองเล่นสล็อต
sa gaming
ทดลองเล่นสล็อต100000
ตรงไปที่สล็อต
SA Gaming
สล็อต
สล็อต
สล็อต
สล็อต
บาคาร่า
สล็อต
สล็อตทดลอง
สล็อตทดลอง
ทดลองเล่นสล็อตทุกค่ายฟรี
สล็อตออนไลน์
pg slot
ทดลองเล่นสล็อตทุกค่ายฟรี
แทงบอล