Security News Twitter advising all 330 million users to change passwords after bug exposed them in plain text

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://www.theverge.com/2018/5/3/17316684/twitter-password-bug-security-flaw-exposed-change-now
May 3, 2018, 4:21pm EDT
There’s apparently no evidence of any breach or misuse, but you should change your password anyway

Twitter is urging all of its more than 330 million users to immediately change their passwords after a bug exposed them in plain text. While Twitter’s investigation showed that there was no evidence that any breach or misuse of the unmasked passwords occurred, the company is recommending that users change their Twitter passwords out of an “abundance of caution,” both on the site itself and anywhere else they may have used that password, which includes third-party apps like Twitterrific and TweetDeck.


According to Twitter, the bug occurred due to an issue in the hashing process that masks passwords by replacing them with a random string of characters that get stored on Twitter’s system. But due to an error with the system, apparently passwords were being saved in plain text to an internal log, instead of masking them with the hashing process. Twitter claims to have found the bug on its own and removed the passwords. It’s working to make sure that similar issues don’t come up again.
Click to expand...
Twitter hasn’t revealed how many users’ passwords may have potentially been compromised or how long the bug was exposing passwords before it found and fixed the issue. But the fact that the company is urging its entire user base to change their passwords indicates that it would seem to be a significant number of users.
Click to expand...
 
  • Like
Reactions: Gandalf_The_Grey, vtqhtr413, Prorootect and 4 others
Prorootect

Prorootect

Level 69
Verified
Nov 5, 2011
5,855
Regarding the recent Twitter password situation...



Dcfkw7VVQAAiYso.jpg
 
  • Like
Reactions: Gandalf_The_Grey, harlan4096 and vtqhtr413
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • +Reputation
    • Like
Freecycle confirms massive data breach impacting 7 million users
Replies
0
Views
611
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
vtqhtr413
    • HaHa
    • +Reputation
    • Wow
Security News US Credit Union Service Leaks Millions of Records and Passwords in Plain Text
Replies
1
Views
837
Security News
Freki123
F
ZeroStrawberries
    • +Reputation
    • Like
    • Wow
Chrome extensions can steal plaintext passwords from websites
Replies
4
Views
2,588
News Archive
golongtime
G

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top