"Malicious cyber actors that successfully compromise social media accounts could spread false or sensitive information to a wide audience," the United States Cybersecurity and Infrastructure Security Agency (CISA) said on December 9 while releasing a guide detailing ways to protect the security of organisation-run social media accounts on platforms such as Twitter, Facebook, and Instagram. As CISA points out, a compromised social media account can: Damage the organisation’s reputation Disrupt operations Impose financial costs Why this matters: Many organisations use social media as a primary way to engage with the public, but very few have the safeguards in place to prevent their accounts from getting compromised. Just yesterday, Prime Minister Narendra Modi's Twitter account, which has over 73 million followers, was compromised and the malicious actor posted fake news about bitcoin from that account. In a more widespread campaign, multiple high-profile Twitter accounts, including those of Apple, Bill Gates, Elon Musk, Warren Buffett, Joe Biden, Kim Kardashian West and Barack Obama were compromised last July. CISA's guide lays out measures that organisations can adopt to prevent such security lapses or at least minimise them "The trusted nature of verified social media accounts—including those of large organizations or public figures— increases the likelihood that false stories posted by these accounts may be initially viewed as true." – CISA. While CISA's guide is primarily intended for US federal agencies, the recommendations are broad enough to apply to any public or private organisation. Many of CISA's suggested measures are commonplace, but the guide works as a good…
