Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
United States Twitter

A Florida Teen Just Got Arrested for Twitter's Huge Hack (zdnet.com) 102

In a press conference on Friday, US authorities announced they arrested the main suspect behind this month's major Twitter hack. From a report: The suspected hacker was identified as Graham Ivan Clark, a 17-year-old teen from Hillsborough County, Florida. According to Florida news outlet WFLA-TV, which first reported on the arrest, Clark was arrested earlier this morning, following a nationwide collaboration between the FBI, the IRS, the DOJ, and the Secret Service. Hillsborough State Attorney Andrew Warren filed charges against Clark for being the "mastermind" behind the July 15 Twitter incident, when the teen is believed to have gained access to Twitter's backend, took over several high-profile accounts, and tweeted on their behalf to promote a cryptocurrency scam. The list of hacked accounts includes big names like Barrack Obama, Joe Biden, Bill Gates, Elon Musk, Jeff Bezos, Apple, Uber, Kanye West, Kim Kardashian, Michael Bloomberg, and others. Further reading: Twitter Says High-Profile Hack Was the Result of a Phishing Attack.
This discussion has been archived. No new comments can be posted.

A Florida Teen Just Got Arrested for Twitter's Huge Hack

Comments Filter:
  • He could have made real money selling those account credentials instead.
    • by jythie ( 914043 )
      I don't know if it is just out of date speculation, but last I heard the 'hack' was either social engineering or bribery, he got someone on the inside to alter the accounts. So whoever actually had the access might have been able to charge more, but at best this guy could have maybe made some money as a middle man by 'knowing someone'.
    • by Rei ( 128717 ) on Friday July 31, 2020 @03:49PM (#60353067) Homepage

      Yeah, I figured it was an amateur by the fact that they used a comparatively low-paying crypto scam. They could have bought SPY puts and then temporarily crashed the US economy by posting fake policy tweets from Trump, followed by "confirmation" from other officials (huge surprise increases in interest rates, war, martial law, mass deportations of all H1-B workers, etc). Or higher payoff (but somewhat less difficult to camouflage) puts in specific stocks, alongside tweets to crash them (X company's main factory just burned down, Y company's CEO and CFO indicted for mass accounting fraud, etc).

      They could easily pull off thousand-to-one bets, maybe tens-of-thousands-to-one.

      Obviously, selling your backdoor or compromised information in DMs to nation-states would be another high paying possibility. Embarrassing information in DMs of millions of high-profile people could be a well-paying blackmail tool, too.

      Instead, they needed, what, $100k-ish in a lame crypto scam? Hope that was worth the jail time...

      • Re: (Score:2, Insightful)

        by PopeRatzo ( 965947 )

        They could have bought SPY puts and then temporarily crashed the US economy by posting fake policy tweets from Trump

        Trump's doing fine crashing the economy all on his own, thank you very much, and he doesn't need some Florida teen's help. Although, if I was this Florida teen, I'd be calling the White House looking for a pardon and a job as Trump's campaign manager. You have to think there would be a place for him on the team.

      • by lgw ( 121541 )

        They could easily pull off thousand-to-one bets, maybe tens-of-thousands-to-one.

        And be in jail even faster. You can't trade real securities anonymously, and any unlikely win, especially in suspicious circumstances, is immediately investigated. Of course, Bitcoin isn't anonymous either, unless you do a better job than this guy obviously did, but at least the approach has some sort of rationale.

        • by Rei ( 128717 )

          Nobody said anything about "trading securities anonymously". But every single day there's a flood of people buying SPY puts. You'd be lost in the noise. Not "anonymous", just "one of countless entities out there buying SPY puts" (a common hedge against market downturns).

          Specific stocks however have less noise to get lost in. Hence the comment about higher risk.

          any unlikely win, especially in suspicious circumstances, is immediately investigated.

          That's a nice fantasy world that I wish were actually true.

          • by lgw ( 121541 )

            Nobody said anything about "trading securities anonymously". But every single day there's a flood of people buying SPY puts. You'd be lost in the noise.

            If you are new to trading options, and get a multi-million dollar high odds payoff, the SEC would notice They're really good at that sort of thing, because it's what insider trading looks like. You'd pop right out of the statistical noise, and they look at the exceptions. If there was some newsworthy event that caused the market move, they'd be looking at you right away in connection with it. OTOH, if you could somehow sell the info to Goldman Sacs, they could made the same trade and get away with it.

      • by ghoul ( 157158 )

        Or bought SPY calls and posted from Bill Gates account a vaccine has been found and will be available for mass vaccination in 15 days.

      • by ghoul ( 157158 )

        He should probably get a pardon and a Congressional Medal of Freedom for the public service of letting people know they should not trust tweets blindly.

      • Comment removed based on user account deletion
        • by DeVilla ( 4563 )

          followed by "confirmation" from other officials

          There a difference between the usual running off at the mouth and someone (state or local officials) following up "OMG, he's actually doing it this time." You'd have to pick someone who hasn't already cried wolf too many times. That rules out a number of federal legislators.

  • by Nidi62 ( 1525137 ) on Friday July 31, 2020 @02:43PM (#60352705)

    As he was led away by the Secret Service, Clark was seen wearing mismatched neon-colored cloths with animal print patches and was heard yelling "Hack the planet!"

    • I was just about to comment that this whole plot was taken from a movie based on screen savers from 20 years ago.

  • So Twitter got pwned by a script kiddie?
    • Some people still don't realise that "Brains of a Wombat" is not a superpower.

      Unfortunately they are still able to become Masters of the Universe.

      • Some people still don't realise that "Brains of a Wombat" is not a superpower.

        I am vengeance.
        I am the night.

        I

        am

        woBAT-MAN!

    • Just missed out on being a Florida Man.
      • Not entirely. [nbcnews.com]

        "This defendant lives here in Tampa, he committed the crime here, and he'll be prosecuted here," Warren said. Florida law allows minors to be charged as adults in financial fraud cases.

        Hold the phone... His Mom is on record saying, "I believe he didn’t do it. I’ve spoken to him every day,” she said. “I’m devastated.”

        • Re:Only 17? (Score:5, Funny)

          by Dutch Gun ( 899105 ) on Friday July 31, 2020 @03:20PM (#60352901)

          I've always hoped that if I'm ever arrested for some nefarious crime, my mom would buck the trend and tell the press "I always knew he'd pull some stupid crap like this."

          • And my mom would say "That's odd, I always felt his downfall would have been extortion..."

          • I've always hoped that if I'm ever arrested for some nefarious crime, my mom would buck the trend and tell the press "I always knew he'd pull some stupid crap like this."

            My favorite (so to speak) along those lines was Gary Ridgway [wikipedia.org], AKA the Green River Killer. When he got arrested, many of his neighbors referred to him as "really stange and creepy". The guys he worked with at the Kenworth plant said "yup, we're not surprised at all". They'd even privately given him the nickname "Green River".

          • by rtb61 ( 674572 )

            If I was stupid enough to try a crime like this, the first thing I would do is install a backdoor in that computer and access it wirelessly from a cheapy second hand notebook. When they come to take the computers away and they will, computers are really, really good and organised masses of network data to track anything down. They would have the proof I was hacked and have to declare it as such, because of the backdoor software they found on the system and the trail of actions it left behind. Leaving them t

        • "He was playing games the whole time, I could him saying how close he was to beating the high score!"

          • He was shooting for a high score, wasn't he?

            Master criminal that he imagined himself to be, with the help of the "untraceable" bitcoin, undoubtedly. There was no way he was going to get away with it, so he either wanted to get caught or had deluded himself into believing it was a sound plan... likely the latter.

            Good judgement is often the last quality of character to develop in us. Just because you can do a thing, doesn't mean you should do a thing.

    • Re:Only 17? (Score:5, Insightful)

      by gweihir ( 88907 ) on Friday July 31, 2020 @03:31PM (#60352963)

      So Twitter got pwned by a script kiddie?

      Yes, they were. Nicely illustrates how abysmally bad corporate IT often is these days.

  • he's rich (Score:5, Interesting)

    by phantomfive ( 622387 ) on Friday July 31, 2020 @02:49PM (#60352737) Journal

    Officials said the hack resulted in more than $100,000 being sent to Bitcoin "accounts associated with Clark" in one single day.

    Making money off hacking is ten times harder than hacking in the first place, because it gives police a way to track.

    • if you send me a hamburger today, I'll gladly send back two on Tuesday.
      • Re: (Score:2, Insightful)

        by Anonymous Coward
        What a wimpy comment...
    • by gweihir ( 88907 )

      Officials said the hack resulted in more than $100,000 being sent to Bitcoin "accounts associated with Clark" in one single day.

      Making money off hacking is ten times harder than hacking in the first place, because it gives police a way to track.

      Ransomware seem to work these days. If done right. All other options are basically worse than burger-flipping.

      • You're right, but I think most ransomware is started from places without extradition treaties to the US. I could be wrong.
        • by gweihir ( 88907 )

          You're right, but I think most ransomware is started from places without extradition treaties to the US. I could be wrong.

          Probably. The point is ransomware is basically the only really worthwhile black-hat activity these days. Will probably remain so, because many, many corporations think they can go cheap on IT security. Unless and until this is generally classified as the results of gross negligence (with CEO, CTO and CISO becoming personally liable), this will not change.

    • Naivete is involved. "They can't track me with bitcoin! Now where is there a public bitcoin trading site I can use... Oh, over here on the dimly-lit net!"

      • Naivete is involved. "They can't track me with bitcoin!

        That's true, a lot of people get really confused about that.

  • For once it was not some kid in Eastern Europe. And they say we are not teaching our kids anything.
    • Exactly, but he did have a crime partner in Western Europe:

      Federal authorities also announced that Mason Sheppard, of Bognor Regis in the United Kingdom, was charged with conspiracy to commit wire fraud, conspiracy to commit money laundering, and the intentional access of a protected computer.

    • by gweihir ( 88907 )

      Well, he got caught pretty fast. He may be somewhat smart on absolute terms, but relatively, he obviously is a Dunning-Kruger far left case.

  • > ... Barrack Obama, Joe Biden, Bill Gates, Elon Musk, Jeff Bezos, Apple, Uber, Kanye West, Kim Kardashian, Michael Bloomberg, ...

    So, no one that really matters.

  • by timholman ( 71886 ) on Friday July 31, 2020 @03:07PM (#60352827)

    A U.S. resident can't compromise the Twitter accounts of major political figures, including the Democratic nominee for the U.S. presidency, and get away with a Bitcoin scam. Scamming the proletariat is one thing (as many robocallers and spammers can attest), but when you embarrass the rich and powerful then they will find you.

    This is especially true in an election year, when everyone is hypersensitive about foreign political interference. What if this was a test run for some state-sponsored entity, as a prelude to sending out damaging tweets right before the election? The authorities had to find who did it.

    The fact that they've already released his name means he's going to be charged as an adult. And with all the felony charges they are piling on, he's going to serve some time. An example is going to be made of him.

    • Re: (Score:2, Insightful)

      Yup, liberty and equality but only if you're white, rich and powerful.
      • by fenrif ( 991024 )

        Obama disagrees that you need to be white.

        It's just about being rich and powerful.

        • by ghoul ( 157158 )

          Half white with a politically connected mother who worked for the deep state will do too.

          • by sfcat ( 872532 )

            Half white with a politically connected mother who worked for the deep state will do too.

            Wait, what?!? Obama's mother was politically connected to the US intelligence community? Are you off your meds or something? Yea, ok, I'm sure she was freelancing for the agency between working shifts making beds...

            • by ghoul ( 157158 )

              Obama's mom was a foreign relations thinktank employee. She met his dad - the scion of a rich African family while they were at Grad school at University of Hawaii. He grew up in Who told you she was a maid? He grew up in a life of privilege in Indonesia with his rich businessman Indonesian stepfather.

              His dads family was descended from rich African elites who sold slaves. his moms family is descended from rich American elite how owned slaves.

          • by Cito ( 1725214 )

            A boer whore working for the deep state? Hahaha

    • by gweihir ( 88907 ) on Friday July 31, 2020 @03:27PM (#60352933)

      Well, this stupid kid is a stupid kid. What do you expect? Of course, I would expect security that a stupid kid cannot break at something like Twitter, but apparently that is too much to ask.

    • by PPH ( 736903 )

      The fact that they've already released his name

      Graham IVAN Clark. It's the Russians!

    • by AmiMoJo ( 196126 )

      Apparently some bloke from Bognor Regis in the UK has been arrested too: https://www.bbc.com/news/busin... [bbc.com]

      I expect there will be an extradition fight over that one.

  • Comment removed based on user account deletion
  • by Jarwulf ( 530523 ) on Friday July 31, 2020 @03:18PM (#60352893)
    Could have pulled some pretty epic pranks or made some funny joke tweets, like maybe Bill Gates coming out as a reptilian etc or even extracted a bit more info on Twatters shady practices. Could have been a martyr. But no, just some dumb bitcoin scam that would just make the situation worse when he was inevitably caught.
    • by tlhIngan ( 30335 )

      Could have pulled some pretty epic pranks or made some funny joke tweets, like maybe Bill Gates coming out as a reptilian etc or even extracted a bit more info on Twatters shady practices. Could have been a martyr. But no, just some dumb bitcoin scam that would just make the situation worse when he was inevitably caught.

      Or he could've shut up, because his access was worth millions in the right hands. He had access to major accounts, he could've done plenty of havoc including selling DMs to other individual

  • Can we please get security that alt least requires somebody with an engineering education in the field and some years of experience to break it? I would say for this case, they should arrest the CEO, CTO and CISO of Twitter and this stupid kid should be set free and thanked publicly for exposing utter and complete incompetence at Twitter.

    • by jythie ( 914043 )
      Depends on what kind of hack it was. Did he hack the technology, or the people? It doesn't take much technical skill to slip a customer service person you know a few bucks to change some records.
      • by gweihir ( 88907 )

        It does require completely inadequate security in the system the customer service person is using though. Some changes need 4 eyes. Banks have that down, but it is their money they are protecting, after all.

  • Three names. A potential serial killer has been stopped in the nick of time.

  • It's hilarious that he thought he could get away with this.

    Yes, sometimes people do get away with stuff like this but on the whole you're much, much more likely to get caught.

    • Seventeen-year-old guys are not exactly known for thinking things through.

    • by ghoul ( 157158 )

      Hes 17. He get Juvi and his record is sealed after 1 year. In the meantime if he managed to hold on to at least some of the crypto he can just wait out his jail sentence , come out and cash out. BTC would probably be worth more when he comes out. Even if the govt goes after him for restitution, he still only needs to pay back the USD so maybe half of the BTC after appreciation. He still gets to keep the rest.

      • He used his own driver's license to verify his bitcoin wallet....I wouldn't count on this clodhopper keeping much of anything for long.

  • Mmm, redundancy... (Score:4, Insightful)

    by Cimexus ( 1355033 ) on Friday July 31, 2020 @05:12PM (#60353443)

    "Graham Ivan Clark, a 17-year-old teen"

    What, as opposed to a 17-year-old in his thirties?

    • Re: (Score:3, Insightful)

      by waspleg ( 316038 )

      I know a lot of 17 year olds who are well past their thirties. The age on the face doesn't automatically impart maturity or wisdom.

      • by bungo ( 50628 )

        And I work with a 30 year old who has the maturity of a 17 year old.

        She sucks up to the boss, acting like a school girl, and is a bitch to anyone else who isn't in her clique.

        For sure, age doesn't impart maturity,

  • by ghoul ( 157158 )

    Ever wondered if this teenager happened to be in a small Russian town how the media would be running with a story about Russian hacking and how Putin controls everything.
    Yet noone is blaming Trump for this hack

"The vast majority of successful major crimes against property are perpetrated by individuals abusing positions of trust." -- Lawrence Dalzell

Working...