Indian Prime Minister Narendra Modi’s Twitter Account Gets Hacked

I am pretty sure it was social engineering. One can't seriously think only Modi logs into his twitter. I mean look at his instagram page; the guy is self obsessed and has team of midwits working in his IT cell.

I just wonder if the hacker tweeted &quot;Effective immediately all 2000 rs notes are demonitized. Official announcement at 9pm.&quot;<p>Would have crashed the whole bloody stock market.

Looks like the hacker was like a dog chasing cars. Didn&#x27;t know what to do with the account once they hacked it.

Twitter should have 2FA enabled by default. Most national governments, agencies and leaders are on twitter. Passwords are inherently insecure and things can get ugly real fast.

I’m sure a somewhat large team manages or has access to that account, and it’s possible that one of them fell for some social engineering attack. It’s still a bit shameful that country and state representatives cannot use better security practices, including two factor authentication.<p>BTW, the distribution of 500BTC to citizens could be a joke based on a past campaign statement by him that he would bring back all “black money” stashed abroad by Indian citizens and that would result in each Indian getting 15 Lakh rupees (1.5 million rupees) in their bank accounts. The actual wording of this promise was different, but it became a constant joke when he failed to get the claimed dirty money back. For comparison, the per capita income in India when that was announced was around 70,000 rupees.

A couple months ago, Twitter announced that all staff are required to use U2F for their accounts. Why not have this requirement for important accounts, as well?

Bet it&#x27;s log4j.

Is saying 7.3 crore rather than 73 million common Indian vocabulary? Is there an equivalent for a hundred million or ten billion?

How. I mean let&#x27;s talk how.<p>I know twitter has security to disable password resets. Or, like there are extra precautions for important accounts and such. Read about that.<p>Short of someone copying the login from a browser, I don&#x27;t see how this is possible. I would love to hear ideas<p>Edit: yeah, what about 2fa ?

Not the first time this has happened. Why isn’t there 2FA required for sign in?

Did somebody pegasus his password?

Is Twitter written in Java?

Looking at the security of twitter account, it looks like an insider job at Twitter. Unimaginable without inside help.