OurMine is a hacking collective that is scaring IT giants, the list of victims is very long and include names like Mark Zuckerberg, Twitter co-founder Evan Williams, David Guetta Daniel Ek, former Twitter CEO Dick Costolo, the CEO and founder of Spotify, and many others.
The last victim in order of time is the CEO of Google, Suchar Pichai, members of the OurMine group have hacked his Quora account that was also linked to his Twitter accounts. The hackers have been posting messages on through the Pichai’s Quora account and shared them also with all the 508,000 Twitter followers.
Twitter promptly removed the messages, but it is easy to find them online, below a picture shared by Techworm.net.
As already occurred for other victims, it is likely that OurMine hackers have used data coming from other data breaches, but the hacking crew claims that it have used the exploits in their arsenal in order to obtain the login credentials of its illustrious victims.
Which is the motivation?
It seems that the OurMine group is linked to a Security Firm that is trying to obtain notoriety from the attacks and is offering its services to the targets, that evidently need them to avoid further incidents.
One of the messages posted by the group states:
“We are just testing people security (sic), we never change their passwords, we did it because there is other hackers can hack them and change everything.”
The OurMine group explained that it gained access to Pichai’s account by exploiting a security issue in Quora’s platform, the team also explained that it reported the flaw to the company that ignored its warning.
Quora’s users are advised, I strongly suggest you to avoid sharing same login credentials among several web services.
[adrotate banner=”9″]
(Security Affairs – Sundar Pichai, OurMine Team)
Fintech firm Figure confirmed a data breach after hackers used social engineering to trick an…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in BeyondTrust RS and…
A new alleged Russia-linked APT group targeted Ukrainian defense, government, and energy groups, with CANFAIL…
A new threat actor, UAT-9921, uses the modular VoidLink framework to target technology and financial…
Attackers quickly targeted BeyondTrust flaw CVE-2026-1731 after a PoC was released, enabling unauthenticated remote code…
Google says nation-state actors used Gemini AI for reconnaissance and attack support in cyber operations.…
This website uses cookies.