As we strongly suspected earlier, the hackers that briefly took over the Twitter and New York Times domains yesterday didn’t use brute force or fancy hacks to get in. The LATimes reports that the Syrian Electronic Army used phishing emails to get username and password credentials for several employees Melbourne IT, the registrar for both NYTimes.com and Twitter.com.
Be careful what emails you click!