An ethical hacker has revealed a significant security glitch in the official Twitter account of the CIA that allowed unauthorized access to a channel meant for recruiting spies.
The researcher, Kevin McSheehan, managed to exploit the vulnerability and redirect contacts of the CIA to his own channel on Telegram.
With nearly 3.5 million followers, the account serves as a crucial channel for the CIA to connect with potential contacts.
This has sparked concerns over the potential exposure of confidential information. The incident exposed the urgency to strengthen security measures in government organizations.
The CIA (Central Intelligence Agency) of the US is known for its ability to gather secret information through a vast network of tipsters and spies. The body uses its official account on X (formerly Twitter) to encourage people to contribute to the nation’s security and promote the agency.
McSheehan Discovers A Flaw That Threatens National Security
McSheehan discovered the flaw that jeopardized the security of the recruitment process. A resident of Maine in the USA, McSheehan stumbled upon the issue earlier this week, triggering immediate concern.
The glitch came to light when the CIA added a link to its X profile page, which led to a Telegram channel that offered information on how to contact the organization through the dark web.
The channel used the Russian language to state, “Our global mission demands that individuals be able to reach out to the CIA securely from anywhere”.
However, a flaw in how X displayed links led to a truncation of the web address to “https://t.me/securelycont,” inadvertently creating an unused Telegram username. Identifying the security loophole, McSheehan registered this username and redirected anyone who clicked on the link to his channel.
Besides, this channel displayed a warning that users shouldn’t share any confidential information.
I saw that the official Telegram link they were sharing could be hijacked – and my biggest fear was that a country like Russia, China or North Korea could easily intercept Western intelligence.Ethical hacker
How Serious Is The Security Glitch?
The technical glitch rendering the CIA vulnerable has significant implications. Unauthorized access to the CIA’s recruitment channel can lead to severe consequences for national security.
For instance, foreign adversaries may exploit this security loophole to infiltrate the operations being made by the CIA and access intelligent information. They may even manipulate the recruitment process to take advantage of the same.
The incident serves as a stark reminder of the pressing need to fortify information and remain vigilant in an era when malicious players are bent on exploiting vulnerabilities.
…. to be continued
Read the Original Article
Copyright for syndicated content belongs to the linked Source : TechReport – https://techreport.com/news/twitter-glitch-exposes-cias-vulnerabilities-in-recruitment-channel/