Twitter urge users to change passwords after internal bug

By Chris Dawson May 8, 2018 - 10:43 am

Twitter is suggesting that users of the social media service change their passwords due to a security bug. The trouble with this is that many users are likely to use the same password for multiple accounts which will mean changing them all… and of course using the same password for multiple services is a bad idea and you shouldn’t really do it, but memory being what it is users go for ease over complexity every time.

“Out of an abundance of caution, we ask that you consider changing your password on all services where you’ve used this password.”
– Twitter

Twitter says that they recently identified a bug that stored passwords unmasked in an internal log, normally they are masked so that no one within twitter can see the password you use using bcrypt, which replaces the actual password with a random set of numbers and letters that are stored in Twitter’s system.

Twotter found this error themselves, removed the passwords, and are implementing plans to prevent this bug from happening again. They could probably have covered it up and kept quite, but of course as a responsible company they’re informing all users. They urge users to consider changing their passwords even though they’re certain that the unhashed passwords weren’t accessed and have now been secured.

Comments are closed.

Recent Comments

11 mins ago
Terry: I thought this sort of stuff was supposed to come out of the other end...
36 mins ago
Simon E: I know that it was mentioned that it's closure was to do with GDPR or...
47 mins ago
paddy: I don't mind Chinese sellers on Ebay or Amazon for that matter but I do...
52 mins ago
M870: To be fair to them, I have used chinese sellers quite a few times on...