Mashable: Twitter OAuth: Everything You Need to Know
How do I keep my OAuth apps secure?
Maintaining regular housekeeping of these approved apps will not only monitor how many apps have access to your account, but will also prevent hacks due to extremely old tokens.
Because these tokens won't expire unless you revoke access, it's important to routinely go through the third-party apps you've approved. You can find them on your Twitter's Application Page under Settings. Once you revoke access from an app, that doesn't mean you can't link those two properties again. You'll simply get a brand new token if you grant that app access again.
You can also easily revoke access to iOS integration on all your devices directly from the web. Navigate to Twitter Settings > Apps > Revoke Access, under the iOS by Apple app. This will prevent your phone from accessing your account via third-party apps, a useful trick if your phone is ever stolen.
You should also be wary of third-party apps that look suspicious, and be careful not to share your login information. The only apps that may safely require your username and password are installed apps you use to tweet directly from your desktop or phone. Most others should never require direct access to your login information.
