Replies (63)
people will laugh at this? then they aren’t really people.
won’t be much consolation or help, but i’m sorry you’re having to deal with this. It sucks.
Are your devices safe?
🤔At that point, I would suspect a virus on my computer/phone. Try to change the password from a computer you have never used and see if scam tweet is still posted.
Switching to nostr is not so bad
Sounds like devices are possibly compromised. Change credentials from a different computer.
It could very well be that Twitter is highly compromised, if that’s happening to you then maybe it’s happening to many others. Twitter should be assumed broken at this point
Your type of engagement is the good one.
Sorry to hear it.
Damn, seems like Twitter could be doing more. And if hardware 2FA couldn't stop unauthorized access, then wtf is Twitter even doing too secure accounts?!
Put a lightning address in your bio 🫤
I would run a Spyware/malware check on all my devices. Change password on all email accounts associated with the account. All intermediaries that might be pushing content. Once all that is done, then safely change the password to your Twitter again. Consider moving content somewhere else and start building again, using the same content.
Make sure your bitcoin are safe.
that's devastating and exhausting🙃
View quoted note →If you need any advice just pop into the DMs. I reserve the right to be wrong though..
If you want to expand who to follow use #grownostr or #bitcoin.
Start with posting on Nostr anything you post over there. It's easy and gives you a backup and people here would love it.
Sorry to hear that. I’m not laughing; hope you get it sorted. I’d be lost on a fix also.
Not an expert in these matters but it would appear more than just your twitter acc is done if what you already tried isn't working. Suggest contacting security/privacy pro to assist with recovery.
Strongly suggest you wipe your OS and do a fresh install of everything
Michael Bazzell could probably help.
IntelTechniques by Michael Bazzell
Sorry, Pete. Hope you can get it sorted and secure. FWIW, I love your tweets. 🫂
In the meantime you should set up your account for receiving zaps—this is half of the fun on #nostr
1) download / open wallet of Satoshi
2) hit “receive” copy the lightning address (looks like an email)
3) paste into the “lightning address/tips” field in your profile
4) start receiving zaps!
I'm sorry for you.
I follow you here on Nostr and have never used a Twitter account to inform me. There was a time one could read twitter feeds w/o an account. It was always suspicous to me using my real identity for registration on Twitter.
Let's overcome this communication age.
Your computer or phone is compromised at a lower level, likely with keyloggers / screen capture. You should wipe them and re-install / factory reset.
This really sucks for the guy.
I've been advocating since 1996, to be your own broadcast media company. YouTube, Facebook, Twitter, IG, Tik Tok etc were short cuts. The audience was NEVER an asset of the profile. In essence you own nothing...
Ten years on, this guy is clearly NOT happy.
1. Fresh hardware
2. Fresh installs
3. Fresh email
4. Fresh password on everything (from new device)
Not reinstalling from backup - right?
Or factory wipe devices
Definitely not laughing. Wish there were something I could do to help.
🫂
Dude, this sucks so hard. Zero laughter.
Are you be any chance use windows?
Really sorry to hear that, wishing you the best and welcome here! As I’ve learned about this place I’ve found there are countless people willing to help!
Stay here , recruit at twitter .
Who is this? I can't see your name only your npub
Either your phone is compromised or Twitter is
I have no idea of how to help,but I am certainly not laughing.
twitter has 2 factor auth by authenticator. easy to recover and hard to hack
Yep. Hardware compromised almost certainly
Possible your computers/phones/cloud might be more compromised than you think.
Rizzo
This 100%
And run your own personal relay on
@Umbrel ☂️
Soon enough you’ll realize this place is all signal and what you’re used to is all noise.
The yubikey won't help you if your passwords are weak or stored insecurely.
This has a ladder effect on your 2fa including email.
Id create a new bitwarden account with a new password with sufficient length - write it down on paper if you have to - store it on none of your devices,
Also be sure to be using a protonmail account, if you already have one change the password using the method 👇
Id then use the password generator on bitwarden to make two new passwords at the max character length Twitter & Protonmail allow respectively.
Save these passwords in bitwarden only.
Id then enable a ubikey after that for convenience.
If you still get pwned that means your computer is compromised - I would get a new one & start fresh meanwhile securing your IP address with a VPN at the router level, you'll need to purchase the router I'm speaking of.
Accept that you got rekt. Dust yourself off and leave Twitter. It blows. Join Nostr and rebuild while riding the wave of a new protocol.
Also, stay humble and stack sats.
If yubikey doesn't work, it definitely sounds like hardware is compromised. Full wipe... backup minimal essentials with no .exe
Nostr fixes this. Twitter is counter to the free and open source movement and as a bitcoiner you should have known that getting rugged was just a matter of time. It's like someone coming on here and complaining their sats got frozen by Coinbase and asking for help. The advice is don't use trusted centralized 3rd parties.
🎯
On the other hand of it's the case you're local machine has been hacked I acknowledge that Nostr does not fix this and I apologize for victim blaming.
Écoutez il m'est arrivé la même chose avec mon compte twitter depuis le 5 juin impossible d'accéder à mon compte de plus mes identifiants ne sont plus les mêmes . Après plusieurs requêtes l'onglet help de Twitter j'ai abandonné durant ce week-end, je n'abandonnerai pas tant qu'ils n'auront pas récupérer mon compte même en leur renvoyant mes archives sauvegardés avant l'acquisition forcée û de la plateforme par M' Tweet, ses nouveaux salaries n'arrivent toujours à retrouver mon compte,
Are you sure that your computers and phones are still safe? Sounds like a Luke scenario.
Shut down everything, get a clean phone/computer and try to recover using only that device. See if that sticks.
And you can move your reputation over to another account if that's necessary, that's the minimum of what your rep has bought you.
Hacked even with a YubI hardware key? No idea mate. Never heard of that level of fuckey before now. Best of luck
If the credentials are type on a computer, I would say the most likely scenario is the computer is compromised, a virus.
Make a backup, format the system and start from scratch.
I would recommend Ubuntu instead of Windows. Blocking all ports for incoming connections is very easy on Ubuntu with the ufw command. Not so easy on Windows.
Yeah you're 100% spot on.
I use Linux as my default computer, with windows laptop there in case I need it for something specific, like flashing graphene or calyx 🫡
Fastboot and adb work on Linux 🫂💜
I'm a noob so sometimes I just want the easy way out!
🤙
You have to deactivate your account if you regain access for a few days and nuke everything associated with it.
Update with new contact details and possibly a new phone number you have stored away for online accounts that require it (No SMS 2FA obviously if it can be avoided)
Haven’t heard of a yubikey being compromised. That’s the last thing I would swap out if the above steps won’t work.
I see a lot of people pointing to malware/key logger etc. maybe. My guess is that it’s an internal Twitter issue and why I’m suggesting to deactivate the account for a few days to see what happens.
If they can reactivate with all new account details it’s the post #[3] Twitter you guys love so much.
I sympathize with our bitcoin queen mother, unfortunately I don't have experience with twitter in this way. Its been years.
This brings up a concern in regard to investing in your nostr identity. Yes we have NIP05, but that only passes the buck to a different identity mechanism (DNS.) One could be much more secure in their identity if we leveraged the bitcoin key management scheme. In particular, we can use a seedphrase to derive a keypair, and publish the xpub for the seedphrase to one's published identity/metadata (nip01/kind0). The owner of the seedphrase can implicitly revoke a compromised keypair by posting the next keypair in the deterministic sequence. A list of revoked npubs with a revocation date can be enumerated for the older keys in the metadata. Since this metadata message is signed, the relay only needs to check that the metadata isnt signed with an older key before allowing the metadata event to be posted. Any notes could be posted with newer and older keys, and it could be up to the client to reject notes signed by revoked keys after the revokation date.
This scheme allows the holder of the identiy seedphrase to only unlock the private derivation phrase when their hot keypair has become comprimised.
Pete — what’s the latest on your twitter hack? Any advice you can share?
Pete, I know you are back on Twitter now. I am happy about that; I shared your notes here when you were cut off.
You have talked about how helping a bitcoin circular economy form is important.
I think a decentralized uncensored speech circular economy is similarly important. And bitcoin helps make that workable here on Nostr.
Nostr is a useful ingredient to bitcoin medium of exchange utilization. And it’s important that protocols like Nostr exist.
I encourage you to keep posting here, even as you have your Twitter account back.
Stay long term @nostr
Welcome 😁
Followed #plenchain
Evil maid?
