Hacking into Twitter account

MANTIS

TAG Member
Joined
Mar 22, 2019
Messages
16
Reaction score
1
Good morning!

I sometimes use Twitter for my hookups but on two occasions, it reported "unsual activity" on my account. I then find that all my messages, followers, tweets- everything has been deleted. I have subsequently taken the decision to delete my account. Fellow punters, would anyone guess who is behind these hacks?

Thank you!
 
Are you using the same email address & passwords in any other places? If so that’s the answer. Some people post the email & passwords from large sites online.
 
Good morning!

I sometimes use Twitter for my hookups but on two occasions, it reported "unsual activity" on my account. I then find that all my messages, followers, tweets- everything has been deleted. I have subsequently taken the decision to delete my account. Fellow punters, would anyone guess who is behind these hacks?

Thank you!
If you have a spouse, guess what?
 
Are you using the same email address & passwords in any other places? If so that’s the answer. Some people post the email & passwords from large sites online.
Thank you! I have used the same email address &address! Good tip!
 
Thank you! I have used the same email address &address! Good tip!

If you use a gmail account a good way to manage stuff like that is like this.

Say you have. myhornyhookups@gmail.com

If you do something like this. myhornyhookups+twatter@gmail.com as your email address for say twitter, now you have a unique email address, that someone won't necessarily randomly guess, so if you do use the same password in different places, and don't use 2fa (though be realistic you should be using 2fa) then there is less of a chance that someone who gets the password hash for "myhornyhookups+myfavoriteescort@gmail.com" to guess what email address you used @ twitter.

Adding a + sign at the end of your username part of the email address and then an additional word/phrase will send all email to your username@gmail.com so

myhornyhookups+twatter@gmail.com and myhornyhookups+myfavoriteescort@gmail.com all get redirected to myhornyhookups@gmail.com
 
If you use a gmail account a good way to manage stuff like that is like this.

Say you have. myhornyhookups@gmail.com

If you do something like this. myhornyhookups+twatter@gmail.com as your email address for say twitter, now you have a unique email address, that someone won't necessarily randomly guess, so if you do use the same password in different places, and don't use 2fa (though be realistic you should be using 2fa) then there is less of a chance that someone who gets the password hash for "myhornyhookups+myfavoriteescort@gmail.com" to guess what email address you used @ twitter.

Adding a + sign at the end of your username part of the email address and then an additional word/phrase will send all email to your username@gmail.com so

myhornyhookups+twatter@gmail.com and myhornyhookups+myfavoriteescort@gmail.com all get redirected to myhornyhookups@gmail.com
Great advice and definitely also a good way to track down who leaked your personal information (or who sold your email address to a spam list).

i.e. myhornyhookups+TAG@gmail.com -- If you get a spam email to this address, you'll know where the address was sold/leaked from (We would never do this, but just an example..)

Big plus for adding 2FA to any social media account -- FWIW, you can use DB's such as https://haveibeenpwned.com/ to search for leaked email addresses & passwords, just another way to see if something you have used before has been exposed.
 
Great advice and definitely also a good way to track down who leaked your personal information (or who sold your email address to a spam list).

This was the reason I started using it, however problem is (and I know because I do it for my company) many keep a "canonical email". which is a stripped out version in the database that marketing can use, so that makes it harder to track, since we strip that out. However, what I do do for my personal email (using this fictional email) is anything to myhornyhookups@gmail.com goes straight to folder, i only every look at that folder when a company I am signing up for doesn't allow the + sign in the email address (breaking with the RFC) just long enough to filter that company to their own folder. Then every other address with a + goes to either a labeled box, or to the inbox.
 
  • Like
Reactions: TAG Manager
Another tip is you can do this with your passwords too. Use an abbreviation for the site in your password someplace.
 
  • Like
Reactions: impish
Oh my. I've been pwned.....
 
Pretty much everyone has at some point or another. The trick is not to STAY pwned....
Changing passwords does it?
 
Changing passwords does it?
Try to avoid using passwords that have been compromised. Using a slight variation with various characters and symbols gives you a slight edge, until it’s leaked again.

Strong password/pass phrase + 2fa (where possible) is a good combo.
 
Try to avoid using passwords that have been compromised. Using a slight variation with various characters and symbols gives you a slight edge, until it’s leaked again.

Strong password/pass phrase + 2fa (where possible) is a good combo.
I'm frickin lame at this. Bottomline, add +2fa at the end is a good idea?
 
I'm frickin lame at this. Bottomline, add +2fa at the end is a good idea?
Yes.

And to make a strong password, you can use a passphrase made of three or four random words, capitalise one letter in each word, and separate the words with numbers and punctuation characters

EG: jUst$foR2Fun fRenchy&liKes%sUgar&BaBies

Easy to deal with, easy to type, hard to crack. They will be leaked eventually... so use a password manager app, and use different passwords for different sites.
 
Yes.

And to make a strong password, you can use a passphrase made of three or four random words, capitalise one letter in each word, and separate the words with numbers and punctuation characters

EG: jUst$foR2Fun fRenchy&liKes%sUgar&BaBies

Easy to deal with, easy to type, hard to crack. They will be leaked eventually... so use a password manager app, and use different passwords for different sites.
Thanks Sudsy. Got it now. :D