Twitter Says Change Your Password, as Bug Stored Them in Plain Text

Adjust Comment Print

Twitter says there's no indication that there was a breach or that any of the passwords were misused.

No Twitter user has yet reported receiving such emails, but some are being forced to choose a new password.

With social media firms being under scrutiny for their approach to user privacy, you'd think Silicon Valley would be sure to dot every i and cross every t, but that's just not how tech works.

Twitter is advising its hundreds of millions of users to change their passwords due to a bug.

Due to a bug, passwords were written to an internal log before completing the hashing process.

1 person shot in gunfire at mall, suspect in custody
One tweet read, "There's an active shooting situation at the mall I'm at". "Now, we are hiding in the storage room at Forever 21". A police dispatcher tells The Associated Press authorities are responding after reports of a shooting.

The bug seems similar to a glitch in Github's password reset feature that leaked user passwords in plain text to the company's internal logs.

It wasn't immediately known when the bug was discovered, or how many passwords were affected.

Enable login verification, also known as two factor authentication.

"We are sharing this information to help people make an informed decision about their account security". The video was recorded by undercover reporters working for Project Veritas, a non-profit organization whose goal, according to their official website, is "investigating and exposing corruption, dishonesty, self-dealing, waste, fraud, and other misconduct".

Twitter did not specify how many passwords were stored in the internal log. "We didn't have to, but believe it's the right thing to do", said Twitter's chief technology officer, Parag Agrawal. "I can tell you who exactly logged in from where, what username and password, when they changed their password". "Big Brother-ish", Haynes concluded.