OurMine hackers attack and takeover NFL Twitter accounts

The hacker group posted messages claiming "everything is hackable"

The social media accounts for 15 NFL teams have been hacked by a group called OurMine which claims its cyber security advice was ignored ahead of the hack.  

Twitter and Instagram accounts for teams such as the San Francisco 49ers and the Greenbay Packers were accessed by a third-party with strange posts popping up on Monday morning.

The official Twitter account for the league was also hacked with OurMine claiming responsibility in a post that has been since been deleted. 

"Hi, we're Back (OurMine). We are here to show people that everything is hackable," the tweet said.

OurMine, which is reportedly based in Dubai, told the BBC that it had contacted the NFL before its cyber attack to offer services to improve its security but received no response. 

One of the first teams to be hacked was the Chicago Bears. The franchise's Twitter account posted a message claiming it had been sold to a Saudi Arabian account.

The group followed up with the same tweet announcing OurMine was back and that everything is "hackable". 

"Just kidding," the tweet read. "We are here for 2 things: 1) announce that we are back 2) Show people that everything is hackable."

A fan account for the Detroit Lions messaged the Bears jokingly asking for a player trade and the hackers messaged back.

The Bears account was back under control on Monday night, as it posted: "Apologies that our account was compromised this morning. We're back in the game & ready for the Pro Bowl."

A Twitter spokesperson confirmed the accounts had been hacked: "As soon as we were made aware of the issue, we locked the compromised accounts and we are currently investigating the situation."

Robert Ramsden-Board, VP of EMEA at Securonix, noted that cyber criminals are increasingly targeting high-profile social media accounts. 

"In this instance, compromising NFL accounts with a high following, the hackers were able to generate buzz and cultivate a large following," he siad. "Organisations like the NFL should tighten up on their security controls, including social media accounts, especially around significant events - you can bet hackers and those looking to make mischief will also have these dates in their calendars."

IT Pro has contacted the NFL for comment.

Featured Resources

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Evaluate your order-to-cash process

15 recommended metrics to benchmark your O2C operations

Download now

AI 360: Hold, fold, or double down?

How AI can benefit your business

Download now

Getting started with Azure Red Hat OpenShift

A developer’s guide to improving application building and deployment capabilities

Download now

Recommended

Global ransom DDoS extortionists are retargeting companies
distributed denial of service (DDOS)

Global ransom DDoS extortionists are retargeting companies

22 Jan 2021
BEC scammers are using Google Forms to identify easy victims
phishing

BEC scammers are using Google Forms to identify easy victims

21 Jan 2021
FBI warns of ongoing corporate vishing attacks
phishing

FBI warns of ongoing corporate vishing attacks

19 Jan 2021
Hackers using COVID vaccine as a lure to spread malware
hacking

Hackers using COVID vaccine as a lure to spread malware

15 Jan 2021

Most Popular

How to move Windows 10 from your old hard drive to SSD
operating systems

How to move Windows 10 from your old hard drive to SSD

21 Jan 2021
What is the Raspberry Pi Pico?
Hardware

What is the Raspberry Pi Pico?

21 Jan 2021
How to recover deleted emails in Gmail
email delivery

How to recover deleted emails in Gmail

6 Jan 2021