Twitter attacker had proper credentials
Robert Lemos,
SecurityFocus
2009-12-18
While Twitter has remained largely quiet on the hour-long hijacking of its domain name, additional information suggests that the attacker had compromised at least one user at the social networking company.