{"id":83377,"date":"2023-08-21T17:29:56","date_gmt":"2023-08-21T14:29:56","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=83377"},"modified":"2025-09-12T10:45:57","modified_gmt":"2025-09-12T07:45:57","slug":"friend-tech-data-leak-exposes-data-of-101183-x-users","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/friend-tech-data-leak-exposes-data-of-101183-x-users\/","title":{"rendered":"Friend.tech data leak exposes data of 101,183 X users"},"content":{"rendered":"<p>A Yearn Finance community member under the pseudonym Banteg reported a data leak of 101,183 people who linked their X (formerly Twitter) account to <a href=\"https:\/\/forklog.com\/en\/news\/what-is-web3\">Web3<\/a>-social network Friend.Tech.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" src=\"https:\/\/forklog.com\/wp-content\/uploads\/Snimok-ekrana-2023-08-21-v-16.39.59.webp\" alt=\"Snimok-ekrana-2023-08-21-v-16.39.59\" class=\"wp-image-214059\"\/><figcaption class=\"wp-element-caption\">Data: <a href=\"https:\/\/twitter.com\/bantg\/status\/1693547023977382277\">X<\/a>.<\/figcaption><\/figure>\n<p>The document itself contains detailed information about users, including wallet addresses and a link to the profile.<\/p>\n<p>Banteg noted that some participants may have granted access to their accounts without fully understanding the agreement. Meanwhile, with permission, Friend.Tech can publish posts on behalf of the user.<\/p>\n<p>According to Spot On Chain analysts, the breach lies in the protocol&#8217;s <span data-descr=\"Application Programming Interface \u2014 the API of the application\" class=\"old_tooltip\">API<\/span>.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" src=\"https:\/\/forklog.com\/wp-content\/uploads\/Snimok-ekrana-2023-08-21-v-16.49.56.webp\" alt=\"Snimok-ekrana-2023-08-21-v-16.49.56\" class=\"wp-image-214060\"\/><figcaption class=\"wp-element-caption\">Data: <a href=\"https:\/\/twitter.com\/spotonchain\/status\/1693581452355739653\">X<\/a>.<\/figcaption><\/figure>\n<p>The platform currently requires an invite for full use of its features. However, experts noted that trades can be executed directly through a smart contract without being whitelisted.<\/p>\n<p>Friend.Tech is a decentralised social application integrated with X, allowing the trading of tokenised user shares. The protocol is built on the <a href=\"https:\/\/forklog.com\/en\/news\/what-is-a-layer%e2%80%912-solution-in-blockchain\">L2<\/a>-Base network from Coinbase.<\/p>\n<p>In recent weeks the project has begun to rapidly gain popularity. It has also attracted various celebrities, including Garry Tan, the CEO of the startup accelerator Y Combinator, and NBA player Grayson Allen.<\/p>\n<p>Against the hype, Friend.Tech&#8217;s daily fee volume rose to $1.4 million, ranking third behind Ethereum and Lido.<\/p>\n<p>In late 2022, <a href=\"https:\/\/forklog.com\/en\/news\/data-leak-exposes-vitalik-buterin-kevin-oleary-and-400-million-twitter-users\">leaked contact details<\/a> of Vitalik Buterin, Kevin O\u2019Leary, and another 400 million X users. The seller claims to have obtained the data through a vulnerability in the social network.<\/p>\n<p>Huobi subsequently fixed a data breach that had exposed user assets since June 2021. According to white-hat hacker Aaron Phillips, the bug was linked to Huobi&#8217;s AWS S3 cloud storage.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A Yearn Finance community member using the pseudonym Banteg reported a data leak affecting 101,183 people who linked their X (formerly Twitter) account to the Web3 social network Friend.Tech.<\/p>\n","protected":false},"author":1,"featured_media":83378,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1188,40],"class_list":["post-83377","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-data-breach","tag-twitter"],"aioseo_notices":[],"amp_enabled":true,"views":"31","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/83377","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=83377"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/83377\/revisions"}],"predecessor-version":[{"id":83379,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/83377\/revisions\/83379"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/83378"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=83377"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=83377"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=83377"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}