Twitter advising all 330 million users to change passwords after bug exposed them in plain text
The social media network exposed the issue in an official blog post and a series of tweets from Twitter Support.
Twitter has suggested that each of its 330 million users instantly change their passwords after a bug was found
It was announced that a bug had been recognized that generated the password hashing process to fail, leaving the unmasked passwords of its users stored in an internal log.
According to Twitter CTO Parag Agrawal, Twitter hashes passwords using a popular gathering known as bcrypt, which displaces an actual password with a random set of numbers and characters and then hack it in its systems.
We recently found a bug that stored passwords unmasked in an internal log. We fixed the bug and have no indication of a breach or misuse by anyone. As a precaution, consider changing your password on all services where you’ve used this password. https://t.co/RyEDvQOTaZ
— Twitter Support (@TwitterSupport) May 3, 2018
We are sharing this information to help people make an informed decision about their account security. We didn’t have to, but believe it’s the right thing to do. https://t.co/yVKOqnlITA
— Parag Agrawal (@paraga) May 3, 2018
Tips on Account Security
Again, although we have no reason to believe password information ever left Twitter’s systems or was misused by anyone, there are a few steps you can take to help us keep your account safe:
- Change your password on Twitter and on any other service where you may have used the same password.
- Use a strong password that you don’t reuse on other websites.
- Enable login verification, also known as two-factor authentication. This is the single best action you can take to increase your account security.
- Use a password manager to make sure you’re using strong, unique passwords everywhere.
Still, the company urged all of its 363 Million users to consider changing their passwords to be on a safer side.