Info@NationalCyberSecurity
Info@NationalCyberSecurity

Twitter link glitch allows CIA contact line to be hijacked by hacker | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker


A minor glitch was found by a hacker on the CIA’s official account on X, formerly named Twitter, that foreign nations could hijacked.

Kevin McSheehan, a cybersecurity researcher, reported finding a security link on the platform’s social profile that could have been used to hijack a secure line. The CIA has a link to a Telegram account used to speak with informants on its platform. The link, which is https://t.me/securelycontactingcia, was added on Sept. 27 and linked to a private forum for providing tips to the CIA. The X account unintentionally shortened the link to https://t.me/securelycont, an unused Telegram username that could have been claimed by a third party.

WHAT TRUMP CAN AND CAN’T SAY NOW THAT HE’S UNDER A GAG ORDER IN CRIMINAL COURT

“The CIA really dropped the ball here,” McSheehan told the BBC. A foreign nation could have taken that Telegram tag and used it to acquire intelligence intended for the CIA, the researcher argued.

McSheehan registered the username himself while redirecting it to his channel. He also posted a message warning to visitors not to share secret information across the channel.

CLICK HERE TO READ MORE FROM THE WASHINGTON EXAMINER

“I did it as a security precaution,” he said. “It’s a problem with the X site that I’ve seen before — but I was amazed that the CIA hadn’t noticed.”

X and the CIA did not respond to requests for comment from the Washington Examiner. The original link, however, has been corrected.

window.fbAsyncInit = function() {
FB.init({

appId : ‘190451957673826’,

xfbml : true,
version : ‘v2.9’
});
};
(function(d, s, id){
var js, fjs = d.getElementsByTagName(s)[0];
if (d.getElementById(id)) {return;}
js = d.createElement(s); js.id = id;
js.src = “https://connect.facebook.net/en_US/sdk.js”;
fjs.parentNode.insertBefore(js, fjs);
}(document, ‘script’, ‘facebook-jssdk’));
!function(f,b,e,v,n,t,s){ if(f.fbq)return;n=f.fbq=function(){ n.callMethod?
n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n;
n.push=n;n.loaded=!0;n.version=’2.0′;n.queue=[];t=b.createElement(e);t.async=!0;
t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s) }(window,
document,’script’,’//connect.facebook.net/en_US/fbevents.js’);
fbq(‘init’, ‘224132531296438’);
fbq(‘track’, “PageView”);window.fbAsyncInit = function() {
FB.init({
appId : ‘190451957673826’,
cookie : true,
xfbml : true,
version : ‘v3.2’
});
FB.AppEvents.logPageView();
};

(function(d, s, id){
var js, fjs = d.getElementsByTagName(s)[0];
if (d.getElementById(id)) {return;}
js = d.createElement(s); js.id = id;
js.src = “https://connect.facebook.net/en_US/sdk.js”;
fjs.parentNode.insertBefore(js, fjs);
}(document, ‘script’, ‘facebook-jssdk’));

——————————————————–


Click Here For The Original Story From This Source.

National Cyber Security

FREE
VIEW