Twitter on Wednesday said that its investigation found “no evidence” that users’ data sold online was obtained by exploiting any security vulnerabilities in its systems.
“Based on information and intel analysed to investigate the issue, there is no evidence that the data being sold online was obtained by exploiting a vulnerability of Twitter systems,” the company said in a statement. “The data is likely a collection of data already publicly available online through different sources.”
The disclosure comes in the wake of multiple reports that Twitter data belonging to millions of users – 5.4 million in November 2022, 400 million in December 2022, and 200 million last week – have been made available for sale on online criminal forums.
The social media giant further said the breach “could not be correlated with the previously reported incident, nor with any new incident,” adding no passwords were exposed. The two datasets published in December and January are said to be identical, with the latter having duplicated entries removed.
images from Hacker News