The first company to report of such a “precaution” was Coldhak, a Canadian-based pro-privacy NGO. The organization tweeted on Friday that it received a notification from Twitter, saying that the NGO’s account may have been “targeted” by government-sponsored hackers.
“We believed that these actors (possibly associated with a government) may have been trying to obtain information such as email addresses, IP addresses, and/or phone numbers,” the message received by Coldhak is reported to have said, adding that an internal investigation by Twitter is underway.
While talking to tech news site CNET, a spokesman for the Twitter office in San Francisco confirmed the authenticity of the notifications, but declined to comment further.
Twitter claimed it couldn’t confirm that private user account information, including that of Coldhak, had been stolen.
The exact number of accounts affected in the possible attacks remains undisclosed, according to BBC.
Online magazine Motherboard reported a dozen Twitter users who are said to have received warning emails from Twitter, noting that many of those potentially affected are linked to development of software for the Tor Project.
Twitter started collecting account holder data, including phone numbers, earlier this year. As Raw Story noted, it is highly probable that hackers are seeking users’ private information such as passwords or phone numbers.
James Lewis, a cybersecurity expert at the Center for Strategic and International Studies in Washington DC, told BBC that state-sponsored hackers have at their disposal much greater resources than individual hackers and can easily bypass most security measures.
Other companies have earlier issued warnings of suspicious account activity. Google, the search-engine giant, began the practice in 2012.
In 2013, Twitter warned over 200,000 users of a possible security breach that targeted passwords and email addresses.