Saudi-based Hacking Group OurMine hacked Facebook’s Twitter and Instagram accounts, as well as Messenger’s accounts, on Friday. It went on to post its own promotional message on all hacked accounts.
Some of our corporate social accounts were briefly hacked but we have secured and restored access— Facebook (@Facebook) February 8, 2020
"Hi, we are O u r M i n e. Well, even Facebook is hackable but at least their security is better than Twitter. To improve your accounts security Contact us: contact@o u r m i n e .org For security services visit: o u r m i n e. org," their tweet said.
OurMine also posted its logo all over both Facebook and Messenger’s Instagram accounts. All messages have since been deleted, but they have left a mark on social media sites.
"As soon as we were made aware of the issue, we locked the compromised accounts and are working closely with our partners at Facebook to restore them," Twitter said in a statement, the BBC reported.
The account takeovers lasted for less than 30 minutes.
Forbes reported that it was not Facebook itself, nor Twitter, that had actually been compromised. Instead, a third-party marketing platform used to manage social media would appear to be the victim.
Jake Moore, a cybersecurity specialist at ESET, told Forbes that, in the past, OurMine had used leaked credentials from dark web sources but "here it seems they have used password resets to change account passwords."
While OurMine usually claims its security services are "for profit," its social media takeovers have received worldwide attention.
On January 27, before the Super Bowl, OurMine claimed that it hijacked the social media accounts of the National Football League, including several of its teams.
OurMine calls itself a "white hat" endeavor with no bad intentions and claims it "only cares about the security and privacy of your accounts and network," according to its website.