Mark Zuckerberg's social media accounts have been hacked

Hackers say LinkedIn username and password dump made their work easy

Hackers have broken into and defaced Mark Zuckerberg's social media accounts.

The attackers, supposedly belonging to a group known as OurMine Team, broke into the Facebook CEO's personal Twitter, LinkedIn and Pinterest accounts (but not Facebook) and posted messages gloating of their success.

OurMine Team claimed that the hack was made possible by last month's vast dump of LinkedIn member details. Usernames and passwords were obtained during a hack in 2012 and subsequently sold on the dark web.

Advertisement - Article continues below

While LinkedIn took steps to invalidate the stolen credentials, it is possible that the hackers used information shared across multiple services - such as Zuckerberg's email address - to gain access to the accounts.

It is also possible that Zuckerberg has committed the cardinal sin of re-using passwords across different sites. This incredibly dangerous practice is one of the most commonly-cited security flaws, and is frequently criticised by security professionals.

Richard Parris, CEO of cyber security firm Intercede, warned that this breach should be very troubling to everyday users. "If Mr Social Media's accounts can be compromised, with all of the knowledge and resources he and his team have available, we should all be taking notice," he said.

He called for companies like Facebook and Twitter to adopt more secure forms of security, such as biometric or two-factor authentication.

Advertisement
Advertisement - Article continues below

"It's been demonstrated time after time that the simple username and password combination is a fundamentally flawed approach to internet security, but that is typically all we are offered to protect our identity and our data."

Advertisement - Article continues below

"It is time the organisations generating significant revenue from consumers stopped playing fast and loose with security and adopted more sophisticated approaches. They are available, they are easy to implement and they offer much higher levels of security. All it takes is a willingness on behalf of services providers to acknowledge that they have a duty of care to the consumers they serve."

Advertisement

Recommended

Visit/security/cyber-security/355210/cyber-criminals-torn-over-how-to-adapt-to-post-coronavirus-threat
cyber security

Hackers torn over how to adapt their tactics to the coronavirus pandemic

3 Apr 2020
Visit/security/cyber-security/355185/165-million-britons-experienced-a-cyber-crime-in-the-past-year
cyber security

Report: 16.5 million Britons fell victim to cyber crime in the past year

1 Apr 2020
Visit/cloud/amazon-web-services-aws/355183/aws-launches-amazon-detective
Amazon Web Services (AWS)

AWS launches Amazon Detective for investigating security incidents

1 Apr 2020
Visit/security/privacy/355182/government-to-launch-coronavirus-contact-tracking-app
privacy

UK government to launch coronavirus 'contact tracking' app

1 Apr 2020

Most Popular

Visit/development/application-programming-interface-api/355192/apple-buys-dark-sky-weather-app-and-leaves
application programming interface (API)

Apple buys Dark Sky weather app and leaves Android users in the cold

1 Apr 2020
Visit/security/cyber-crime/355171/fbi-warns-of-zoom-bombing-hackers-amidst-coronavirus-usage-spike
cyber crime

FBI warns of ‘Zoom-bombing’ hackers amid coronavirus usage spike

31 Mar 2020
Visit/data-insights/data-management/355170/oracle-cloud-courses-are-free-during-coronavirus-lockdown
data management

Oracle cloud courses are free during coronavirus lockdown

31 Mar 2020