Twitter urge users to change passwords after internal bug

By Chris Dawson May 8, 2018 - 10:43 am

Twitter is suggesting that users of the social media service change their passwords due to a security bug. The trouble with this is that many users are likely to use the same password for multiple accounts which will mean changing them all… and of course using the same password for multiple services is a bad idea and you shouldn’t really do it, but memory being what it is users go for ease over complexity every time.

“Out of an abundance of caution, we ask that you consider changing your password on all services where you’ve used this password.”
– Twitter

Twitter says that they recently identified a bug that stored passwords unmasked in an internal log, normally they are masked so that no one within twitter can see the password you use using bcrypt, which replaces the actual password with a random set of numbers and letters that are stored in Twitter’s system.

Twotter found this error themselves, removed the passwords, and are implementing plans to prevent this bug from happening again. They could probably have covered it up and kept quite, but of course as a responsible company they’re informing all users. They urge users to consider changing their passwords even though they’re certain that the unhashed passwords weren’t accessed and have now been secured.

Comments are closed.

Recent Comments

40 mins ago
Stephen Wright: Great idea... tax something that is doing well to support something that is outdated in...
3 hours ago
Bryn: VAT should be starting ground for tax reforms. Make it more of a sales tax....
13 hours ago
Garry Hall: My problem was when I amended a mistake in a listing my selling section then...
13 hours ago
rich: I have just had an interesting IM Chat with ebay on this issue and they...