Twitter continues to release information about its investigation into a massive security breach that roped a number of high-profile accounts into spamming messages in a bitcoin scam campaign.Like many security snafus before it, the Twitter fiasco found certain key employees fall victim to social engineering. According to the microblogging firm, hackers initiated a phone spear phishing attack that involved "significant and concerted" efforts to dupe employees into handing over access to internal administration tools."This attack relied on a significant and concerted attempt to mislead certain employees and exploit human vulnerabilities to gain access to our internal systems," Twitter said in a tweet Thursday. A second tweet said, "By obtaining employee credentials, they were able to target specific employees who had access to our account support tools."Read more
