Menu

Topics

Connect

Comments

Want to discuss? Please read our Commenting Policy first.

Twitter bug causes passwords to be stored in plain text — go change your password now

Dani Lantela/Global News

Twitter is urging its 330 million users to change their passwords after discovering an internal bug in the system.

Story continues below advertisement

The bug – which has since been fixed — stored passwords unencrypted in an internal log, according to a blog post from Twitter Chief Technology Officer Parag Agrawal.

Usually, passwords are stored using hashing, a process “that masks it so no one at the company can see it,” Agarawal explained, but this bug stored the passwords verbatim in the company’s logs.

Hashing is commonly used for password storing and verification.

Though the company hasn’t seen evidence that the passwords were misused or accessed improperly, Agrawal still says that “out of an abundance of caution,” users should still change your password.

The company is also working on plans to “to prevent this bug from happening again.”

Story continues below advertisement

It wasn’t immediately known when the bug was discovered, or how many passwords were affected.

Users should change their Twitter password, as well as any password to other online accounts that is the same, or similar to their Twitter password.

Agrawal also suggested using a strong password that isn’t used on any other site, and enabling two-factor verification for log ins.

Advertisement

You are viewing an Accelerated Mobile Webpage.

View Original Article