[ThinkingOne]

So, I'm doing some deep research into the January, 2025 leak of 2.8B Twitter accounts.

I'm trying to figure out how someone could get a list of all Twitter accounts (assuming they do not have access to internal Twitter databases).

Brute force doesn't explain it. Checking all possible account names ("a", "aa", etc. like password cracking), there would be way too many lookups (e.g. even at just 10 characters, that would be 5 quadrillion lookups). Checking all possible userids would be even worse (at 300 billion possible userids per day).

Is anyone familiar with the Twitter API, and whether this would in theory be possible?

[xz9]

So, I'm doing some deep research into the January, 2025 leak of 2.8B Twitter accounts.

I'm trying to figure out how someone could get a list of all Twitter accounts (assuming they do not have access to internal Twitter databases).

Brute force doesn't explain it. Checking all possible account names ("a", "aa", etc. like password cracking), there would be way too many lookups (e.g. even at just 10 characters, that would be 5 quadrillion lookups). Checking all possible userids would be even worse (at 300 billion possible userids per day).

Is anyone familiar with the Twitter API, and whether this would in theory be possible?

assuming user information cannot be retrieved from an endpoint like "api/account/{rolling account number}" then there a few ways to scrape users:
you could scrape the followers and followings of a given account.
you could also scrape the "feed" but there may be many posts by the same user so i would imagine that is the least efficient method
both methods mentioned wont be able to find "orphaned" accounts i.e: accounts with no followers or followings who have never posted.
perhaps they had access to some third party developer interface or they just hacked twitters admin panel (which has been done a few times now)

[ThinkingOne]

assuming user information cannot be retrieved from an endpoint like "api/account/{rolling account number}" then there a few ways to scrape users:
you could scrape the followers and followings of a given account.
you could also scrape the "feed" but there may be many posts by the same user so i would imagine that is the least efficient method
both methods mentioned wont be able to find "orphaned" accounts i.e: accounts with no followers or followings who have never posted.
perhaps they had access to some third party developer interface or they just hacked twitters admin panel (which has been done a few times now)

That makes a lot of sense.

However, there are a lot of orphaned accounts listed in there that have no followers/following or even posts.

I don't know if there is any "list users" type of command the API can provide, although I imagine it would be restricted.

[xz9]

assuming user information cannot be retrieved from an endpoint like "api/account/{rolling account number}" then there a few ways to scrape users:
you could scrape the followers and followings of a given account.
you could also scrape the "feed" but there may be many posts by the same user so i would imagine that is the least efficient method
both methods mentioned wont be able to find "orphaned" accounts i.e: accounts with no followers or followings who have never posted.
perhaps they had access to some third party developer interface or they just hacked twitters admin panel (which has been done a few times now)

That makes a lot of sense.

However, there are a lot of orphaned accounts listed in there that have no followers/following or even posts.

I don't know if there is any "list users" type of command the API can provide, although I imagine it would be restricted.

can you post a link to this scrape? im interested now

[ThinkingOne]

can you post a link to this scrape? im interested now

It's at https://breachforums.hn/Thread-2022-Twit...nts-103-GB -- but not an easy download. I think both the filehosts no longer have it, and torrent seeds come and go. But no credits!

I might see if I can post at least the first and last files to a filehost so people can see what it is like and whether they want the whole thing.

The last post in the thread above now has a link to the "tiny" version (2.3GB uncompressed, the original untouched first+last files).

[OriginalCrazyOldFart]

When you figure out how to get all the propaganda listed, let me know. I'd be surprised if Trump or Musk-RAT does not have something set up to block anyone who tells the truth. I think they have a monitor on the site, along with Truth Social, to make sure you don't post anything but Trump's propaganda, repeating it.
I know Facebook does it, when you post anything that might be seen as telling the truth about Trump, because Zuckerberg is kissing his ass these days. I've been blocked a few dozen times from saying things his AI does not like. lol !
I quit using Twitter when it became X, don't want anything to do with it, or Musk-RAT.
The best thing that is happening these days, are the people who are attacking all Tesla's. Elon needs to start selling them in Russia & China & adding insurance for ten years, because no insurance company wants to pay all the damage claims on them. People are dumping them because of Musk-RAT. Makes me laugh every time I see it in the news.
Looks like Elon already does sell them with insurance added. lol !!
To file a damage claim with Tesla Insurance, Tesla policyholders can use the Tesla app or contact the Claims team at 1-844-34-TESLA, while those without a Tesla Insurance policy can file a vehicle-to-vehicle claim through the Tesla website.
Tesla states that after successful submission, a Tesla Insurance adjuster will contact you for more information
https://www.tesla.com/support/insurance/...-insurance
(I love this, makes my day.)
Tesla vehicles vandalized across US since Elon Musk began White House role.
https://abcnews.go.com/US/tesla-vehicles...=119677836
The latest suspicious incident occurred overnight in Tigard, Oregon, where "more than a dozen" shots were fired at a Tesla dealership, according to Kelsey Anderson, the public information officer at the Tigard Police Department.

[302]

It happened most likely through a vulnerability like IDOR or like SSRF.