Twitter has urged its 300 million plus users to change their passwords immediately after many of them were exposed on its network.
After an error exposed many of Twitter users passwords, the social media giant has urged everyone to change their passwords due to an internal network error which exposed many of them via plain text. Through a process called “hashing”, passwords are made difficult to read to ensure each users privacy. Twitter has said that an error in the way the passwords were handled meant some were stored in easily readable form.
An error in the system caused computers to store these passwords before the hashing process was complete, leaving them exposed and easy to read which in turn puts each users password and profile at risk. Speaking through a blog, Twitter said that an investigation was started when the bug was discovered and that no evidence of password theft or misuse was discovered on the inside.
While no foul play or misuse was discovered, Twitter still urged to change their passwords as an extra precaution seeing as how the number of passwords, without an exact estimate, was “substantial” and that they were exposed for quite a while.
Security expert Graham Cluley said
“It’s quite encouraging that Twitter both found the problem internally, and informed its users quickly and transparently. Something similar just happened to Github and I wonder if Twitter’s discovery was caused by them asking: ‘Hey, see that Github problem? Do you think something like that could happen to us?’.”
Many other experts commented on Twitter and their handling of the situation, applauding their efforts to quickly deal with the situation in a swift and proper manner. Per Thorsheim, another security expert involved in many companies and firms security praised Twitter for their actions and said that it should be “applauded for its transparency”