Twitter on Thursday urged to it’s all users, more than 300 million users to change their passwords, saying they had been unintentionally “unmasked” inside the company by a software bug.
Twitter Tweeted that “We recently found a bug that stored passwords unmasked in an internal log. We fixed the bug and have no indication of a breach or misuse by anyone. As a precaution, consider changing your password on all services where you’ve used this password,”
We recently found a bug that stored passwords unmasked in an internal log. We fixed the bug and have no indication of a breach or misuse by anyone. As a precaution, consider changing your password on all services where you’ve used this password. https://t.co/RyEDvQOTaZ
— Twitter Support (@TwitterSupport) May 3, 2018
Twitter suggest is to store passwords encrypted, or “hashed,” so they are masked to even people inside the company, Twitter chief technology officer Parag Agrawal explained in a blog post.
“Due to a bug, passwords were written to an internal log before completing the hashing process,” Twitter said, in a statement. “We found this error ourselves, removed the passwords, and are implementing plans to prevent this bug from happening again.”
Read Also: