Join The Discussion

 

New arena at Will Rogers takes shape


The proposed Will Rogers Memorial Center arena continues to take shape as voters head for a Nov. 4 election to decide whether to approve new taxes to help pay for the $450 million facility.

read more >

Cooking Class: Fort Worth chef brings home the gold

Toques off to Timothy Prefontaine. The executive chef at the iconic Fort Worth Club is currently the best in the nation, according to the American Culinary Federation. Prefontaine earned the title of 2014 U.S.A.’s Chef of the

read more >

Fort Worth-based Woodmont plans $80M Hard Rock Hotel retail center

Woodmont Outlets of Fort Worth, an affiliate of The Woodmont Co., has partnered with Cherokee Nation Businesses for a proposed upscale retail development at Hard Rock Hotel & Casino Tulsa.

read more >

Fort Worth firm 'simplifies' advertising

Reaching customers requires more than price slashing and flashy ads. In today’s competitive marketplace, machines – not men and women – are essential to tapping new markets and

read more >

Trinity Valley School leader to leave in May 2015

Gary Krahn, head of school for the past eight years at Trinity Valley School in Fort Worth, will leave his position in May 2015 when he and his wife Paula will move

read more >

AP hack proves Twitter has a serious cybersecurity problem

 

Julianne Pepitone

NEW YORK (CNNMoney) -- If Twitter needed any more evidence that it has a serious security problem, this should do it: Stocks plunged sharply on Tuesday after a hacker accessed a newswire's account and tweeted about a false White House emergency.

The shocking tweet came from the Associated Press earlier this afternoon: "Two Explosions in the White House and Barack Obama is injured."

The AP's communications team quickly tweeted from its own account that the main AP Twitter was compromised, but investors had already panicked. The Dow Jones industrial average immediately plunged by more than 140 points.

And there it is: After years of hacks that typically involved little more than obscene language, Twitter's subpar security measures have now caused serious real-world consequences.

Many hacks happen when account owners use guessable passwords or access Twitter over public Wi-Fi and shared computers. If one person who tweets from a corporate account loses his or her phone, an entire corporation's Twitter account could be at risk.

While Twitter can't control those issues, critics say the company could do more to prevent them.

Security pundits have called on Twitter for years to beef up its security using simple methods: Sharply limit the login attempts allowed from a single IP address. Let only one person access a Twitter account at a given time.

Ideally, Twitter would employ a "two-factor authentication" login method. It's a basic security tool already used by Google, Facebook and Dropbox that requires both a password and a piece of data, such as numbers sent via text message.

Twitter began posting job listings earlier this year for engineers to work on two-factor authentication. The posts came after Twitter's own systems were hacked, and the attackers gained access to usernames as well as encrypted and randomized passwords for about 250,000 users.

But job postings don't mean much until serious changes are implemented. Meanwhile, the hacks have continued. News organizations are a particularly attractive target thanks to their reach and influence.

The Twitter accounts of CBS' 60 Minutes and 48 Hours were compromised over the weekend. In July 2011, News Corp.'s Fox News account -- followed by more than 2 million people -- was hacked in and tweeted that President Obama had been assassinated.

That same month, eBay's PayPal United Kingdom Twitter feed was hacked, and the profile photo was changed to a pile of excrement. Comcast's NBC News account was also compromised two months later, falsely tweeting that a plane had crashed into the Ground Zero area of Manhattan.

In February of this year, both the Burger King and Jeep Twitter accounts were hacked during the same week.

It's unclear what, if anything, Twitter plans to change. As always, a company spokesman said, "We don't comment on individual accounts for privacy and security reasons."

So far, Twitter has put the onus on brands to ensure they're being smart about choosing and sharing passwords. Following the Jeep account hack earlier this year, Twitter tweeted a link to a "friendly reminder about password security."

Twitter can tweet about best practices all it wants, but that approach clearly isn't working. When hacks do happen, the company does a good job of restoring compromised accounts typically within a few hours. But as the AP hack proves, these attacks can have damning real-world effects.

< back

Email   email
hide
Arena
What do you think of the new plans for a new Will Rogers arena and changes at the Convention Center?