Using credentials obtained from LinkedIn leak, the intruders were able to gain access to Zuckerberg’s Twitter account, where they tweeted “you were in Linkedin Database … DM for proof”, as well as his Pinterest account, the title of which was changed to “Hacked By OurMine Team”. Moreover, the hackers claimed that they also managed to break into Zuckerberg’s account on Facebook-owned Instagram, but the company denies this fact, claiming that no Facebook systems or accounts were accessed.
It should be mentioned that Mark Zuckerberg hadn’t tweeted from his Twitter account for 4 past years. In fact, Mark’s last message on Twitter was a link to already non-existent blogpost about anti-piracy law SOPA. Overall, most of Zuckerberg’s total 19 tweets stem from a 2-month period in early 2009.
One can be surprised that despite running one of the biggest websites in the world, Facebook founder shows the same security weaknesses as ordinary Internet users. Everyone knows that reusing passwords is a bad idea for everyone: if one social network gets hacked, the only account that should be at risk is the account in that network, not accounts in all other websites too.
Security observers also remind that Twitter supports two-factor authentication, which can help ensure that a user trying to log in to the website must also have access to the phone number of the account owner. However, Twitter only introduced it a year after Zuckerberg’s most recent tweet, and Pinterest doesn’t have that security feature at all.
In the meantime, the experts warn that there could be more hacks like this one to come. Indeed, the LinkedIn password dump, which was disclosed in May, was shortly followed by a bigger one from MySpace. Despite the fact that the leaked credentials may be 8 years old, with around 360 million accounts, hackers can be sure that some users are still using the same set of email address and password.
sourced from torrent freak