Hack attack hits home for AP writer

Sep 08, 2010 By CHRISTY LEMIRE , AP Movie Critic

(AP) -- The Twitterverse is full of far more mysterious forces than indecipherable trending topics and Lady Gaga.

There are people out there with dark, dastardly intents, as I learned when my account was hacked.

Now, anyone who knows me knows I love Twitter. I am a tweeting fool. I've tweeted from backstage at the Oscars and the red carpet at the Emmys. I've tweeted from baseball games and film festivals. I even tweeted from my hospital bed, sleep-deprived and loopy on pain meds, the day after giving birth to my son.

My husband often teases me: "Oh, sorry, didn't mean to interrupt your Twittering, or whatever it is you're doing."

So yeah, I like . And it's not all narcissistic nonsense; I've never announced I was on my way to get a mani-pedi, for example.

But as the Associated Press movie critic, I'll always link to my reviews and my colleagues' good work, or I'll retweet something funny from celebrities I follow, such as Jay Mohr ((at)jaymohr37) or Elizabeth Banks ((at)ElizabethBanks). I've made new friends through Twitter, like SportsIllustrated.com baseball writer Joe Lemire ((at)SI-JoeLemire, no relation), and stayed in touch with old ones, such as CNN's Jackie Adams ((at)mochagurl).

So you can imagine how bummed I was last week - and how violated I felt - when I discovered someone had nabbed my Twitter feed and fired off about 100 in a matter of minutes. Most of it was gibberish about drug charges, sex, the Galaxy Tab and Stephen Hawking. Some profanity, some weird trending topics. Lots of links, none of which I clicked on. It felt as if someone had broken in and rummaged through my stuff with their grubby little cyber paws.

Thankfully, the folks at the Twitter Trust & Safety Team noticed these uncharacteristic bursts of links and suspended my account even before I could get in there to change my password.

Here's how I found out I'd been hacked: I was on vacation in New York with my husband and my 10-month-old, Nicolas, and had taken the baby to the Brooklyn Children's Museum to let him escape the late summer heat and romp around. When I finally checked into Twitter from my phone amid the din and chaos of the museum's cafe, I noticed I'd been pummeled with mentions and direct messages.

I thought, "Huh, I haven't been doing anything too noteworthy today. These babies are really high-tech." But then I realized they all said variations of the same thing: As (at)ProgGrrl put it so well, "Your account has been hacked, it's spewing all sorts of rubbish at us."

Obviously, anyone who follows me knows I wasn't trying to sell cheap Viagra. I still felt horrible about inundating my fellow tweeps, even inadvertently. It's just so obnoxious.

But I wasn't the only one that day. As Trust & Safety director Del Harvey explained, I was one of several people attacked by a larger network of sites outside the United States. Many of those links sent out through my account went back to Canadian pharmacies.

My account may have been compromised through a process called phish-spam-phish, which Harvey said is one of the most common patterns on the Internet. A hacker will phish for usernames and passwords, then send out spam through those people's accounts, then use links to phish for more.

It's also possible that someone I follow on Twitter with a compromised account sent me a message with a link attached to it, then I clicked on it thinking it was something I could trust, and allowed access to my information that way.

Once Twitter suspended my account, I filed an appeal detailing what had happened, what my username is and when I last had access to it. Because this occurred over Labor Day weekend, it took them five days to reinstate me; ordinarily, they try to clear these things up in two to three days. But as Harvey explained, she has four or five people on her staff going through 800-900 complaints and reports of compromised accounts each day. San Francisco-based Twitter has 145 million users.

"It's difficult when you have something like that. You have to walk folks through how it happened," she said. "It's confusing and it's hard for folks to understand. People have a lot invested in their online identity."

"You are absolutely the victim here," she added. "We're definitely not judging them for being hacked. We have a lot of people who are embarrassed by what's been posted on their accounts."

To prevent something like this from happening to you, be extremely aware of the links you click on, Harvey said. And while the dilemma of finding a totally secure password will never be solved, she said you can make it harder for someone to figure out yours by having different passwords for different sites.

Another suggestion: Take the lyrics of a song you like, then take the first letter from each word in the first line and make that your password. For Harvey's example, Marc Cohn's "Walking in Memphis," that would be "pombss" for "Put on my blue suede shoes." Adding punctuation makes it even tougher to crack.

Armed with my own new password - and no, it's not "pombss" - I'm back up and tweeting again. Thanks to all who stuck with me. And now I'm off to get a mani-pedi.

Explore further: Twitter rules out Turkey office amid tax row

More information: Follow AP Movie Critic Christy Lemire on Twitter at http://twitter.com/christylemire .

1 /5 (1 vote)
add to favorites email to friend print save as pdf

Related Stories

Twitter hacked by old technique -- again

Jul 15, 2009

(AP) -- Breaking into someone's e-mail can be child's play for a determined hacker, as Twitter Inc. employees have learned the hard way - again.

Dalai Lama to 'tweet' on Tibet

Feb 23, 2010

The Tibetan spiritual leader the Dalai Lama has joined micro-blogging service Twitter, attracting over 55,000 followers in just two days.

Twitter dabbling with verifying identities

Jun 13, 2009

Authenticity badges were popping up at Twitter on Friday as the popular micro-blogging service tested a way to verify that people tweeting are who they claim to be.

British politicians fall victim to Twitter scam

Feb 26, 2010

(AP) -- British politicians were among those caught up Friday in the latest Twitter-based scam which hijacks users' accounts to send out sexually explicit messages to friends and followers.

Recommended for you

Twitter rules out Turkey office amid tax row

7 hours ago

Social networking company Twitter on Wednesday rejected demands from the Turkish government to open an office there, following accusations of tax evasion and a two-week ban on the service.

How does false information spread online?

10 hours ago

Last summer the World Economic Forum (WEF) invited its 1,500 council members to identify top trends facing the world, including what should be done about them. The WEF consists of 80 councils covering a wide range of issues including social media. Members come ...

User comments : 0

More news stories

IBM posts lower 1Q earnings amid hardware slump

IBM's first-quarter earnings fell and revenue came in below Wall Street's expectations amid an ongoing decline in its hardware business, one that was exasperated by weaker demand in China and emerging markets.

Microsoft CEO is driving data-culture mindset

(Phys.org) —Microsoft's future strategy: is all about leveraging data, from different sources, coming together using one cohesive Microsoft architecture. Microsoft CEO Satya Nadella on Tuesday, both in ...

Quantenna promises 10-gigabit Wi-Fi by next year

(Phys.org) —Quantenna Communications has announced that it has plans for releasing a chipset that will be capable of delivering 10Gbps WiFi to/from routers, bridges and computers by sometime next year. ...

Down's chromosome cause genome-wide disruption

The extra copy of Chromosome 21 that causes Down's syndrome throws a spanner into the workings of all the other chromosomes as well, said a study published Wednesday that surprised its authors.

Researchers see hospitalization records as additional tool

Comparing hospitalization records with data reported to local boards of health presents a more accurate way to monitor how well communities track disease outbreaks, according to a paper published April 16 in the journal PLOS ON ...

Ebola virus in Africa outbreak is a new strain

The Ebola virus that has killed scores of people in Guinea this year is a new strain—evidence that the disease did not spread there from outbreaks in some other African nations, scientists report.