10,000 children killed, maimed in conflicts worldwide

Days after Twitter accounts of several billionaires were hacked to engineer a crypto scam, Twitter on Saturday said it is embarrassed, disappointed and, more than anything, sorry for what happened with some of its high-profile users as attackers successfully manipulated its employees and used their credentials to access internal systems, including getting through the two-factor protections.

In the first detailed summary of the "social engineering attack" via a crypto scam that hit at least 130 users this week, Twitter said for 45 of those accounts, the attackers were able to initiate a password reset, login to the account and send Tweets.

"We are continuing our forensic review of all of the accounts to confirm all actions that may have been taken. In addition, we believe they may have attempted to sell some of the usernames," the micro-blogging platform said in a statement.

For up to eight of the Twitter accounts involved, the attackers took the additional step of downloading the account's information via "Your Twitter Data" tool.

This is a tool that is meant to provide an account owner with a summary of their Twitter account details and activity.

"We are reaching out directly to any account owner where we know this to be true. None of the eight were verified accounts," said Twitter.

The company said the attackers were not able to view previous account passwords, as those are not stored in plain text or available through the tools used in the attack.

"Attackers were able to view personal information including email addresses and phone numbers, which are displayed to some users of our internal support tools," informed Twitter.

In cases where an account was taken over by the attacker, they may have been able to view additional information, Twitter added, saying its forensic investigation of these activities was still ongoing.

"We are actively working on communicating directly with the account-holders that were impacted".

The company said it will soon restore access for all account owners who may still be locked out as a result of the remediation efforts.

The New York Times reported on Friday that the Twitter crypto scam can be traced back to a group of hackers who congregate online at OGusers.com, a username-swapping community where people buy and sell coveted online handles.

The report said that the Twitter hack is not from Russian, Chinese or North Korean hackers but was done by a group of young people, "one of whom says he lives at home with his mother".

Washington, Jan 12: The US State Department has described the recent visit of envoys of 15 countries to Jammu and Kashmir as an "important step" but expressed concern over the continued detention of political leaders and restrictions on internet in the region.

Alice Wells, the Acting Assistant Secretary of State for South Asia, tweeted on Saturday that she was "closely following" the visit of the envoys to Kashmir, describing it an "important step".

Wells, who will be visiting India this week, added: "We remain concerned by detention of political leaders and residents and Internet restrictions. We look forward to a return to normalcy."

The group of diplomats made a two-day visit to the Union Territory on Thursday and Friday to see the conditions thereafter Jammu and Kashmir's special constitutional status was removed last August.

While some US politicians and media have criticised the action by Prime Minister Narendra Modi's government, the US has officially appeared to support the abrogation of the Constitution's Article 370 on the special status.

Last October, Wells told the House of Representatives Subcommittee on Asia and the Pacific that the State Department supported the objectives behind it, while not directly mentioning the abrogation.

"The Indian government has argued that its decision on Article 370 was driven by a desire to increase economic development, reduce corruption, and uniformly apply all national laws in Jammu and Kashmir, particularly in regard to women and minorities.

"While we support these objectives, the Department remains concerned about the situation in the Kashmir Valley, where daily life for the nearly eight million residents has been severely impacted since August 5," she had said.

Washington has banked on India's democratic institutions - the judiciary and public debates - being able to steer the country.

Bearing this out, the Supreme Court last week ordered the government to review its decision to shut down the internet in Kashmir, which it declared was a fundamental right, thus taking a step to address Wells's concern.

Washington, May 12: The US Federal Bureau of Investigation and cybersecurity experts believe Chinese hackers are trying to steal research on developing a vaccine against coronavirus, two newspapers reported Monday.

The FBI and Department of Homeland Security are planning to release a warning about the Chinese hacking as governments and private firms race to develop a vaccine for COVID-19, the Wall Street Journal and New York Times reported.

The hackers are also targeting information and intellectual property on treatments and testing for COVID-19.

US officials alleged that the hackers are linked to the Chinese government, the reports say.

The official warning could come within days.

In Beijing Foreign Affairs ministry spokesman Zhao Lijian rejected the allegation, saying China firmly opposes all cyber attacks.

"We are leading the world in COVID-19 treatment and vaccine research. It is immoral to target China with rumors and slanders in the absence of any evidence," Zhao said.

Asked about the reports, President Donald Trump did not confirm them, but said: "What else is new with China? What else is new? Tell me. I'm not happy with China."

"We're watching it very closely," he added.

A US warning would add to a series of alerts and reports accusing government-backed hackers in Iran, North Korea, Russia and China of malicious activity related to the pandemic, from pumping out false news to targeting workers and scientists.

The New York Times said it could be a prelude to officially-sanctioned counterattacks by US agencies involved in cyber warfare, including the Pentagon's Cyber Command and the National Security Agency.

Last week in a joint message Britain and the United States warned of a rise in cyber attacks against health professionals involved in the coronavirus response by organised criminals "often linked with other state actors."

Britain's National Cyber Security Centre and the US Cybersecurity and Infrastructure Security Agency said they had detected large-scale "password spraying" tactics -- hackers trying to access accounts through commonly used passwords -- aimed at healthcare bodies and medical research organisations.