Wauchulaghost's Jacking method:

1) Go to twitter.com

2) Click on login at the top right of the page

3) Click on forgot password

4) Enter Username and click search

5) For people who didn't add a second security step, you will see something like this:

6)  Then you have to guess the email the target used to register their Twitter account.  In the case above, it appears that the email is trumpmelania2017@gmail.com, but the majority of people will reuse the same username for their email and Twitter usernames. For example, if their Twitter username is @MAGAFailure, their email will appear as ma*********@gmail.com and the email will be : MAGAFailure@gmail.com  Notice that the number of stars ********* represents the number of characters. 

7) Then you have to go to gmail.com (or wherever the email is registered) and try to register the email address found in step 6. Some people will just invent an email on the spot when they register their twitter account and never actually register that email address (this is where the vulnerability of Twitter lies ; the site doesn't force you to confirm the email address you register your Twitter account with before starting to use your Twitter account so many never bother to set it up).

8)  If the email wasn't registered, you then register the email address and do a simple password reset.   Voila!  The account is now yours - you have now jacked your first account. 

The reason many find Wauchula's tweets to be so misleading is because he knows full well that he could have NEVER jacked Donald Trump or Melania Trump with this method. The method was given to him a few months ago by the group VandaSec and he has been riding the media wave making himself appear like a big hacker when the guy can't even code or hack.  He is a simple password resetter who loves media attention.  It's not the first time that he takes credit for people's work.