Twitter Says Change Your Password, as Bug Stored Them in Plain Text

Adjust Comment Print

Twitter says there's no indication that there was a breach or that any of the passwords were misused.

No Twitter user has yet reported receiving such emails, but some are being forced to choose a new password.

With social media firms being under scrutiny for their approach to user privacy, you'd think Silicon Valley would be sure to dot every i and cross every t, but that's just not how tech works.

Twitter is advising its hundreds of millions of users to change their passwords due to a bug.

Due to a bug, passwords were written to an internal log before completing the hashing process.

Fox May Revive Tim Allen Comedy 'Last Man Standing'
Thus if " Last Man Standing " makes it back on the air and sticks around past the 2018-19 season, FOX could end up paying a license fee to Disney for the show.


The bug seems similar to a glitch in Github's password reset feature that leaked user passwords in plain text to the company's internal logs.

It wasn't immediately known when the bug was discovered, or how many passwords were affected.

Enable login verification, also known as two factor authentication.

"We are sharing this information to help people make an informed decision about their account security". The video was recorded by undercover reporters working for Project Veritas, a non-profit organization whose goal, according to their official website, is "investigating and exposing corruption, dishonesty, self-dealing, waste, fraud, and other misconduct".

Twitter did not specify how many passwords were stored in the internal log. "We didn't have to, but believe it's the right thing to do", said Twitter's chief technology officer, Parag Agrawal. "I can tell you who exactly logged in from where, what username and password, when they changed their password". "Big Brother-ish", Haynes concluded.

Comments