Expert suspects low-tech hack behind early BYU rumors on Twitter

By Andrew Adams | Posted - Aug. 18, 2010 at 5:48 p.m.

 
Expert suspects low-tech hack behind early BYU rumors on Twitter

Save Story

Estimated read time: 2-3 minutes

This archived news story is available only for your personal, non-commercial use. Information in the story may be outdated or superseded by additional information. Reading or replaying the story in its archived form does not constitute a republication of the story.

SALT LAKE CITY -- Fueling the early BYU independence buzz online were several tweets posted by the Colorado State football Twitter account.

The CSUFootball account stated late Tuesday that BYU football was going independent and a press conference was scheduled for Thursday. Subsequent posts overnight suggested the press conference was with ESPN and BYU's 2011 football schedule would possibly include Notre Dame, Navy and Army.

Related

Source: BYU football going independent

Rumors about BYU football going independent were confirmed Wednesday. A source with Utah State University, familiar with the situation, told the Deseret News the move will be announced in the next day or two.

A CSU athletics spokesman Wednesday morning acknowledged the account had been hacked, though he would only say the school was investigating.

Later, the media relations department issued this statement:

"At approximately 11 p.m. MDT last night, and again this morning around 5 a.m. MDT, the Colorado State football Twitter feed was deliberately compromised by an anonymous individual wishing to spread multiple rumors and attribute them to CSU.

"The tweets did not originate with anyone employed by the university. The tweets have been removed and the athletic department has changed passwords on all official athletics Twitter accounts.

"The Colorado State athletic department apologizes for any inconvenience this may have caused members of the media or fans following the football Twitter account."

An expert at H-11 Digital Forensics in Salt Lake City contacted by KSL Newsradio doubted a very high-tech hacking scheme was at hand.

"It could have been a phishing scam, [but] more likely it was more along the lines of social engineering -- they found out what the person's password was and they just logged in using that person's password," forensics technician Matt Anderson said. "That's talking to people -- no computers involved. That's just going in, meeting with them, saying hi. It could have been a friend. It could have been a colleague."

Anderson discounts phishing because usually those attacks have a broader focus.

Password generators are not just a tool employed in the movies. Anderson calls that "brute force attacking," and says he doubts it is method either. Usually, Anderson says passwords are difficult to change in those types of attacks.

Anderson says the hacker could have even simply guessed the CSU password if it was simple. He says the most common passwords are "password" and "secret."

"It just opens the eyes to what can happen," Anderson said. "Be careful."

E-mail: aadams@ksl.com

Related stories

Most recent Utah stories

Related topics

UtahSportsBYU Cougars
Andrew Adams
    KSL.com Beyond Business
    KSL.com Beyond Series

    KSL Weather Forecast

    KSL Weather Forecast
    Play button
    Mobile Apps | Newsletter | Advertise | Contact Us | Careers with KSL.com | Product Updates
    Terms of use | Privacy Statement | DMCA Notice | Manage My Cookies | EEO Public File Report | KSL-TV FCC Public File | KSL FM Radio FCC Public File | KSL AM Radio FCC Public File | Closed Captioning Assistance
    © 2025 KSL.com | KSL Broadcasting Salt Lake City UT | Site hosted & managed by Deseret Digital Media - a Deseret Media Company