At least 11 Twitter users received notifications Friday evening that their accounts might have been targeted by state-sponsored attackers. Among those impacted are mass surveillance researchers, security professionals, and at least one privacy organization.
The notification emails went out around 5:30PM ET. This is the first time the service has mentioned, let alone deployed, its state-sponsored attack warning system, and as Twitter noted in its notification letter above, the company believes only email addresses, IP addresses, and phone numbers would have been exposed. While many of those impacted seem to be interested in privacy issues — if not making a living off them — there isn't a direct tie between the accounts. Jacob Appelbaum, a primary member of the Tor Project, began organizing a list of sorts on his Twitter feed to keep up with individuals receiving notifications.
Twitter hasn't shared additional information beyond its notification letter.
Both Facebook and Google have similar emergency alerts in place for state-sponsored attacks. Facebook's launched in October and immediately recognized attacks on State Department employees. The federal department only found out about those attacks because of the alert system, a New York Times report indicated. Access to social media accounts can be lucrative for determined attackers. One account could yield access to dozens of others and open up lines of communication between people in a particular field or network.