Linus Tech Tips X (Twitter) account hacked, again

Linus Sebastian, founder of Linus Tech Tips, shares his experience of being targeted in a phishing attack that compromised his X (Twitter) account.

What happened

On 12 August 2024, Linus Tech Tips (LTT), a widely popular tech channel, fell victim to a significant security breach. The channel's official X account (formerly Twitter) was hacked, and unauthorized posts promoting the fraudulent sale of Apple MacBook Pros surfaced. These tweets claimed to offer MacBook Pros for £600 each, including free shipping and a signature from Linus Sebastian, the founder of LTT. To add to the scam's credibility, the hackers falsely stated that all proceeds would go to charity, luring unsuspecting followers.

Screenshots of the suspicious tweets spread quickly across social media, particularly on the LinusTechTips subreddit, where concerned fans discussed the unfolding situation. The scam posts featured a photo of a MacBook Pro alongside an iPhone displaying LTT's official X account, making the offer appear more legitimate.

In response to the breach, Linus Sebastian confirmed the hack via his personal social media accounts, explaining how the situation rapidly spiraled out of control. He had received an email notification alerting him to suspicious activity, but by the time he attempted to regain access, the hackers had already altered the account's password and tampered with its two-factor authentication (2FA), effectively locking him out.

See also: HIPAA Compliant Email: The Definitive Guide

Going deeper

In a YouTube interview with LMG Clips, Linus recounted a phishing incident where he was tricked into giving up his Twitter login details. The incident occurred during a personal event when Linus received a suspicious email claiming that his Twitter account had been accessed from Russia. Under the pressure of time and distractions, Linus hastily clicked the link in the email and entered his credentials. Reflecting on the event, Linus expressed frustration, acknowledging that he knew better than to trust suspicious links, but his urgency led him to make a mistake.

A detailed analysis by John Hammond, a YouTuber cybercrime investigator, revealed that the phishing site had a few telltale signs: poor grammar, non-functional links, and an incorrect use of 2FA prompts. Despite these flaws, Linus was caught off guard and entered his credentials. Hammond's deep dive into the phishing site exposed even more vulnerabilities, including deceptive prompts designed to trick users into providing more information.

What stood out was Linus's transparency in owning up to his mistake, treating it as a teachable moment for viewers. He emphasized the importance of verifying suspicious activity by manually navigating to the concerned website rather than clicking links in emails. 

What was said

In the interview, Linus described the incident as one of those unfortunate moments where everything went wrong at once, with his personal commitments blinding him from the true nature of the email: “I had just lit the grill... and I was rushing to get the food,” he admitted.

Despite his extensive experience in the tech industry, Linus explained how this phishing attempt bypassed his usually cautious nature: “I like to think that I’m better than this... but they caught me at exactly the wrong moment.” The email prompted him to click a link, which he followed without verifying its authenticity. Linus confessed that he reset his password through the phishing site, thinking it was a legitimate X.com link, only to later discover that he had fallen victim to a scam. Reflecting on his mindset at the time, he shared, “I don’t really care about the Twitter account,” indicating that his relative indifference to the platform made him less careful than he would have been with a more valued account.

Luke (LMG Clips) went on to mention how Hammond, in a separate video, pointed out several telltale signs of phishing in the email Linus received, noting particularly the suspicious URL, “u45827238.c.sendgrid.net,” which diverged from the official X.com domain. Hammond analyzed how the phishing site Linus visited operated, explaining, “They tell you your password is wrong so that if you entered it incorrectly, you’ll hopefully correct it, giving them more information.” This subtle yet sophisticated tactic was designed to exploit user behavior, encouraging victims to repeatedly submit personal information.

Reflecting on the incident, Linus expressed his embarrassment but recognized the importance of being transparent about his mistake: “The best defense we have is to own it publicly... and use it as a teachable moment.” By sharing his experience, he hoped to raise awareness about how even those well-versed in technology can fall prey to social engineering attacks if caught at the wrong moment. His candidness demonstrates that no one is immune to human error and that even seasoned professionals can benefit from continued vigilance.

In the know

Phishing is a cyberattack where malicious actors attempt to trick individuals into revealing sensitive information, such as passwords, credit card numbers, or personal details, by posing as a legitimate entity. These attacks often come in the form of deceptive emails, text messages, or websites that appear to be from trusted sources like banks, social media platforms, or service providers. 

To identify phishing, watch for suspicious email addresses, URLs that do not match the official domain, grammatical errors, and urgent requests for personal information. Phishing messages may also contain unexpected attachments or links designed to steal your data or infect your device with malware. To protect yourself, never click on unfamiliar links or download attachments from unsolicited emails, verify the sender’s identity, and enable multi-factor authentication (MFA) on your accounts. Regularly updating passwords and using security software can also help reduce the risk of falling victim to phishing attacks.

Go deeper: 

• What is an email phishing attack?
• Steps to protect against phishing attacks

Why it matters 

Falling victim to a phishing attack is not reserved for those with little to no knowledge of cybersecurity. Even the most tech-savvy individuals and organizations can be targeted and deceived by increasingly sophisticated phishing tactics. This attack demonstrates the need to stay vigilant and understand the evolution of these attacks. Practicing good cybersecurity hygiene, like recognizing suspicious communication and securing your accounts, is key to minimizing the impact of phishing attacks.

Read also: Why people still fall for phishing attacks in 2024

FAQs

Can phishing be prevented? 

While it’s impossible to prevent phishing attempts entirely, proper education, awareness, and strong security practices can greatly reduce the risk of falling victim to such attacks.

What should I do if I’ve already fallen for a phishing scam? 

Immediately change your passwords for any compromised accounts, enable MFA, monitor your accounts for suspicious activity, and report the incident to your bank or relevant institutions.

How do phishing scams evolve over time? 

Phishing scams evolve by adopting new techniques, platforms, and technologies. Cybercriminals are increasingly using artificial intelligence (AI) to craft more convincing emails, while also targeting emerging technologies like cryptocurrency wallets.

Read also: How to spot AI phishing attempts and other security threats