The strange case of the stolen @N Twitter handle

Naoki Hiroshima says he was extorted by a hacker who wanted access to his @N Twitter handle. 

|
AP
The Twitter logo hangs in the company's San Francisco offices in this file photo.

Naoki Hiroshima is a Web developer in California. Until recently, his Twitter handle was @N – a unique name, to say the least. 

But last week, according to Mr. Hiroshima's own account, he received a text message from PayPal, asking for a verification code. He ignored the message until he received an e-mail from GoDaddy, alerting him to changes in his account settings. As it turned out, a hacker had apparently commandeered both accounts with the purpose, Hiroshima says, of forcing him to hand over his @N handle. 

It was extortion, in other words, and Hiroshima believes that PayPal and GoDaddy, in allowing the hacker to use simple credit card information to access his account, were complicit in the scam. 

"Stupid companies may give out your personal information (like part of your credit card number) to the wrong person," Hiroshima wrote in a post on Medium. "Some of those companies are still employing the unacceptable practice of verifying you with the last some digits of your credit card. To avoid their imprudence from destroying your digital life, don't let companies such as PayPal and GoDaddy store your credit card information." 

Of course, as Julianne Pepitone of NBC News notes this afternoon, it's likely that we haven't heard the end of this one – PayPal, for instance, says it didn't give out any of Hiroshima's information to anyone. Meanwhile, the @N handle is again live, operating under the moniker badal_news

Here's the official statement from GoDaddy: 

Our review of the situation reveals that the hacker was already in possession of a large portion of the customer information needed to access the account at the time he contacted GoDaddy. The hacker then socially engineered an employee to provide the remaining information needed to access the customer account. The customer has since regained full access to his GoDaddy account, and we are working with industry partners to help restore services from other providers.

At the very least, the whole debacle seems to be a lesson that it can never hurt to be too careful when it comes to Internet security. But as Matthew Panzarino of TechCrunch notes, for the time being, some problems seem to be out of our hands. 

"The question about what can be done to improve security in these matters is a long-running one," Mr. Panzarino writes. "There have been some changes like two-factor authentication being offered by more vendors – but sloppy procedures like allowing account resets with credit-card numbers (especially partial ones!) remain commonplace." 

Panzarino points out "that many of these ‘hacks’ don’t take any special technical knowledge. They just require a methodical and bold operator that is willing to pick up the phone and follow a script." 

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
What is the Monitor difference? Tackling the tough headlines – with humanity. Listening to sources – with respect. Seeing the story that others are missing by reporting what so often gets overlooked: the values that connect us. That’s Monitor reporting – news that changes how you see the world.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.

QR Code to The strange case of the stolen @N Twitter handle
Read this article in
https://www.csmonitor.com/Technology/Horizons/2014/0130/The-strange-case-of-the-stolen-N-Twitter-handle
QR Code to Subscription page
Start your subscription today
https://www.csmonitor.com/subscribe