We recently found a bug that stored passwords unmasked in an internal log. We fixed the bug and have no indication of a breach or misuse by anyone. As a precaution, consider changing your password on all services where you’ve used this password. https://t.co/RyEDvQOTaZ
— Twitter Support (@TwitterSupport) May 3, 2018
Twitter uses a technology to replace your actual passwords into an arbitrary set of numbers and letters and thereafter saved on their system.
Anytime you log in, it makes it easier for your password to be authenticated without exposing your actual password. A bug was thereafter identified which stored your password in an unmasked internal log which has been fixed. Meaning, passwords were exposed in a plain text.
During investigations, there wasn’t any evidence of any data breach or any misuse of any unmasked password, but twitter thought it right to alert users to change their passwords. – According to Twitter CTO Parag Agrawal.
We are sharing this information to help people make an informed decision about their account security. We didn’t have to, but believe it’s the right thing to do. https://t.co/yVKOqnlITA
— Parag Agrawal (@paraga) May 3, 2018
More on Geekieworld: Night Mode Now Available On Twitter Desktop Web App
How To Change Your Password
Although a misuse of your password or data breach hasn’t been detected, it’s advisable that you change your password right away using these steps;
- Click on your Profile Picture icon given in the top-right corner of the screen, go to Settings and Privacy >> Password. Now, type your current password, and enter a new one(Remember to use a strong password).
- Enable login verification, also known as two-factor authentication. This is the single best action you can take to increase your account security.
On Twitter app for iOS and Android, click on your Profile Picture icon in the top-left corner of your screen, and then go to Settings and Privacy >> Account >> Change Password (“Password” on Android), and create a new, stronger password.
Also, change your password on any other service where you may have used the same password.