Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

President Obama's Twitter Account Hacked

French hacker is said to have guessed the President's password to illegally access his page on the micro-blogging service.

French police arrested a man Thursday for allegedly hacking into the Twitter accounts of U.S. President Barack Obama and other famous individuals.

Authorities said the 24-year-old Frenchman, who has not been identified, used the online pseudonym "Hacker Croll" while breaking into various Web sites.

The man was able to access Obama's Twitter page and other users' accounts simply by guessing passwords, French authorities said.

"He was a young man spending time on the Internet," said French prosecutor Jean-Yves Coquillat, according to London's Telegraph newspaper. "He acted as a result of a bet, out of the arrogance of the hacker. He is the type who likes to claim responsibility for what he has done," said Coquillat.

It's not clear whether the hacker was able to glean any sensitive information from Obama's Twitter account or from the other sites he broke into. He's accused of illegally accessing dozens of Twitter and Facebook pages.

If convicted, the hacker faces up to two years in prison on each count he's charged with.

French authorities reportedly worked with the U.S. Federal Bureau of Investigation to monitor Hacker Croll's online activities and whereabouts, and to eventually bring him to justice.

More than any previous president, Obama has embraced technology for both political and personal purposes.

The president made extensive use of Facebook and other social networking sites during his election campaign last year, and is said to be as addicted to his Blackberry as any mid-level, corporate sales manager.

But Obama's technological bent could leave him more vulnerable than his predecessors to electronic crime. The White House has not officially commented on the matter.

InformationWeek has published an in-depth report on data center operational trends. Download the report here (registration required).

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Our Endpoint Protection system is a little outdated... 
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-0404
PUBLISHED: 2019-12-11
SAP Enable Now, before version 1911, leaks information about network configuration in the server error messages, leading to Information Disclosure.
CVE-2019-0405
PUBLISHED: 2019-12-11
SAP Enable Now, before version 1911, leaks information about the existence of a particular user which can be used to construct a list of users, leading to a user enumeration vulnerability and Information Disclosure.
CVE-2019-0395
PUBLISHED: 2019-12-11
SAP BusinessObjects Business Intelligence Platform (Fiori BI Launchpad), before version 4.2, allows execution of JavaScript in a text module in Fiori BI Launchpad, leading to Stored Cross Site Scripting vulnerability.
CVE-2019-0398
PUBLISHED: 2019-12-11
Due to insufficient CSRF protection, SAP BusinessObjects Business Intelligence Platform (Monitoring Application), before versions 4.1, 4.2 and 4.3, may lead to an authenticated user to send unintended request to the web server, leading to Cross Site Request Forgery.
CVE-2019-0399
PUBLISHED: 2019-12-11
SAP Portfolio and Project Management, before versions S4CORE 102, 103, EPPM 100 and CPRXRPM 500_702, 600_740, 610_740; unintentionally allows a user to discover accounting information of the Projects in Project dashboard, leading to Information Disclosure.