Exposed credentials could also be used to launch this attack, the importance of monitoring our account activities is becoming crucial. Cyber criminal are reinventing themselves creating new ways to get a benefit from the huge amount of personal information that is already exposed and available out there. From my point of view, we are going to see the birth of new attacks which are going to take the advantage of your exposed credentials. Are we living the data breach era? I really think so.
The "Doubleswitch" not only involves hijacking verified accounts but makes it extremely difficult for the legitimate owner to regain control of their handle.