Twitter Suffers Internal Glitch - Change Your Password Immediately

If you are an avid Twitter user, you must have received a notice the moment you logged into your account back at the beginning of May that you should change your Twitter password. This was related to an internal glitch in the Twitter system. Although it didn't seem like the glitch evolved into a severe security threat, it could have easily turned into something bigger had cybercriminals obtained sensitive data. In this post here, we would like to tell you more about this occurrence. We will also give you more details about Twitter security and how the service urges its users to protect their accounts.

Why Did Twitter Urge Users to Change Passwords?

A few months ago, Twitter issued a notification that recommended users to change their passwords. According to the official Twitter blog post, there was an internal glitch within the system. As a result, more than 330 million Twitter users could have been affected by this mishap.

Usually, the passwords that are stored within the system are coded, and no one can see them the way they are. However, due to this bug, all the passwords were stored in plain text within the internal system. Needless to say, if anyone could get a hand on such information, a lot of accounts could be compromised. And that is why the company told you to change your Twitter password, even if it was a precaution measure.

How Does the Twitter Password Storage System Work?

As mentioned, no one can see your password as it is, even if they work for Twitter. When you save your password, the system masks it so that no one could see it in plain text. In other words, if any system stores your passwords in plain text, that is an obvious security breach.

To mask your password, Twitter uses a hashing process. During this process, the passwords are encrypted. The plain text is scrambled so that no one would be able to recognize it even if they did see it (which shouldn't happen in the first place). Your password as you know is replaced with an alphanumeric sequence. As a result, whenever you log into your account, the system can recognize you and proceed with the authentication automatically, and there is no need to reveal the actual password. This kind of password encryption within the system is the industry standard that any company that handles personal data has to apply.

What’s with the Bug?

Twitter has not revealed more information about the bug that caused this issue. It did not point out how this bug appeared, so we can only infer that the potential security threats were grave, especially considering that every user received this automated notification to change their passwords.

The good thing was that the bug was noticed and found by Twitter, not by someone from the outside. Thus, the information could not be exploited immediately. What's more, according to Twitter's Chief Technology Officer Parag Agrawal, there was “no indication of breach or misuse,” so it is possible to say that Twitter noticed this bug right on time.

What Are the Twitter Security Recommendations?

Having this bug and other potential threats in mind, Twitter also issued a number of recommendations. It is obvious that you have to change your Twitter password the moment a threat arises, but there are also other important points to consider.

First, you should change your password not only on Twitter but also on other related services that might be using the same password. It is funny that this issue arose on the World Password Day (which also happened to be trending on Twitter at the time). As a result, a lot of security-related blogs offered a lot of guidelines to the users who would be concerned about their password security. The thing that everyone emphasized is that passwords need to be changed regularly.

Second, users need to employ strong passwords. It is very often that users choose easy-to-remember passwords because strong passwords might be too complicated to recall every single day. But the problem is that such passwords are really easy to crack nowadays, especially with strong CPUs that make brute force attacks easier. We have actually covered the worst passwords before, and you can check if you are using any of those. If you do, please do change your password.

Twitter also recommends using the two-factor authentication when you log in. When you have this option enabled, a One Time Password is sent to your phone each time you attempt to log in. Please note that this option requires you to confirm your email address and your phone number that have to be associated with your account.

Finally, you can always use a password manager that will ensure your password is strong, and you will no longer have to worry about changing it all the time. For now, you can scroll to the bottom of this post for the instructions on how to change your Twitter password. We will tell you both, how to reset and how to change your password.

Concerns About Consumer Data Storage

One last thing we would like to emphasize is that the news about this bug surfaced amidst concerns about how companies store consumer data. For example, we have covered the notorious Equifax breach previously, and there have been reports that Twitter was a subject to annual security evaluation by the U.S. Federal Trade Commission since 2010 because back then the company was accused of “serious lapses” in data security.

Therefore, it is clear that the bar for data security is getting set higher and higher, and companies that manage sensitive user information, have to meet those requirements to ensure their business success.

How to Change Your Twitter Password

If you want to reset your Twitter password, you can click this. This is an automated Twitter service that allows you to reset your password once you confirm your identity by entering your email, phone number or ID.

You can also change your password via Twitter settings. When you log into your account, do the following:

  1. Click your display picture at the top-right corner (web version).
  2. Click Settings and privacy on the drop-down menu.
  3. Click Password on the menu.
  4. Enter your Current password.
  5. Enter your New Password, Verify password, and click Save changes.
By Foley
August 27, 2018
News
English
August 27, 2018
News

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

How To

How Do I Change my Netflix Password?

Netflix is a fantastic platform for watching all your favorite shows with other people, and one of its most useful features is that it a single account subscription can make the service available to the subscriber, as... Read more

July 6, 2018
How To

How To Change Your Password On Snapchat To Protect Your Privacy?

Forgot your Snapchat password? No biggie, there are several ways you can reset it. The easiest and fasted method is if you have a verified phone number or email address linked to your Snapchat account. Then you can... Read more

April 30, 2018
How To

How to Change Your Steam Account's Password

The word Steam probably does not tell you much if you are not a gamer; however, for gamers, it is their tiny paradise with thousands of video games in a variety of genres. Officially, Steam was developed by Valve... Read more

August 6, 2018
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.