Building an Army of Bots by Hijacking a Twitter Handle

Explore the alarming world of Twitter API key vulnerabilities in this eye-opening conference talk from the Hack In The Box Security Conference. Discover how researchers gained access to over 3,200 Twitter API keys from various organizations by examining hardcoded tokens in mobile applications. Learn about the potential risks of impersonation, account takeovers, and unauthorized actions that can result from these security oversights. Delve into the prevalence of hardcoded secrets in source code, with insights into global trends and the increasing frequency of such leaks. Gain valuable knowledge on the causes, impacts, and prevention techniques for API key leaks, and get a glimpse of exciting findings from the speakers' extensive research. This talk serves as a crucial wake-up call for developers and organizations to improve their security practices and protect sensitive information.

#HITB2022SIN #COMMSEC Building An Army Of Bots By Hijacking a Twitter Handle - R. Sasi & V. Singh