MANILA, Philippines – A hacker going by the name Mauritania Attacker has reportedly leaked over 15,000 account details of Twitter users.
According to GigaOm, the hacker revealed Twitter user IDs as well as authentication tokens, known as OAuth tokens.
The OAuth tokens allow Twitter accounts to connect to third-party services like Instagram and TweetDeck. The information can also be used to gain limited access to someone else’s account with the right script run.
Indian security website TechWorm adds that Mauritania Attacker reportedly has the “entire database of users on Twitter,” though this has yet to be verified.
It’s currently not clear whether Mauritania Attacker acquired the details by accessing Twitter or hacking into a third-party service. Some experts do believe it’s more likely the hacker got into a third-party service.
In GigaOm’s report, security expert Alan Woodward recommended that users take a look at their application settings on Twitter, revoke and then reapprove access. This sort of periodic maintenance of the app approvals forces a new OAuth Token to be created, and lets you determine what apps you still want to use. – Rappler.com