I can't see that bill gates, Elon musk and every cryptocurrency channel using the same manager. This looks like something closer to a Twitter hack than an intermediary, especially with the the reposting after deletion.

No way, it's way too widepread and would be shut down by now.

Elon Musk, Barack Obama and Wiz Khalifa just tweeted the scam again this very minute, more than an hour since it started. This is backend access, Twitter can't figure out how to shut it down.

They could have shut these bitcoin giveaway scams down with a single regex a year ago when they first showed up. They let them go and this is the price they will pay. Let's see if someone is going to sue Twitter because 'verified' to be Bill Gates is meaningless now.

This is much, much worse than a typical Bitcoin scam.

It has the same textual footprint. These tweets should be quarantined automatically until expressly checked by a human being.

But when you post a tweet via api, the tweet will include the app's name at the bottom? The screenshot in the article has "Twitter Web App" at the bottom.

Its not hard to believe that a group with the ability to hijack the twitter accounts of some of the world's most influential people could also hijack the "posted by" metadata.

I guess the previous post was seen as a argument against compromised API keys.

right, it's not only compromised API keys, but it could be that with something else.

Do that many accounts use the same social media manager?

I think many people have try several of them before settling on one for their use case, and don't revoke the OAuth.

I know hootsuite is a very popular app for managing the social media accounts.

And their status page shows their integration with Twitter is having issues now https://web.archive.org/web/20200716000356/https://status.ho...