IE 11 is not supported. For an optimal experience visit our site on another browser.

Twitter might have exposed your password. You should probably change it.

NBC News Clone summarizes the latest on: Twitter Might Have Exposed Your Password You Should Probably Change N871241 - Technology and Innovation | NBC News Clone. This article is rewritten and presented in a simplified tone for a better reader experience.

The company says it has fixed the error and knows of no breaches, but users should be cautious anyway.
Image: People as silhouettes as they check mobile devices
People as silhouettes as they check mobile devices.Chris Ratcliffe / Bloomberg, via Getty Images file
By Alex Johnson

Twitter advised its 330 million users on Thursday to change their passwords after some of them were accidentally stored in plain text on an internal log.

Twitter said in a post on its official blog that it had fixed the error and that it believed that no passwords were breached or misused. But it told users to consider changing their Twitter passwords "out of an abundance of caution."

Twitter didn't say how many passwords were exposed or for how long.

Twitter, like most large internet companies, uses a standard password-masking protocol called "hashing," which runs your password through an equation to convert it into a string of random-seeming numbers and letters. For example, in one kind of hashing, the password "password" might be "5f4dcc3b5aa765d61d8327deb882cf99."

Three data security myths, debunked
01:49

When you type in "password" at the Twitter log-in screen, what Twitter actually gets is that soup of letters and numbers; it compares it with the soup it cooked up and lets you in only if they match. Combined with other mechanisms, hashing makes it extremely difficult to reverse-engineer a password from its hash.

The idea is that your actual password isn't ever supposed to be saved on Twitter's servers — but that's what happened in this case, the company said.

"We are very sorry this happened," it said. "We recognize and appreciate the trust you place in us, and are committed to earning that trust every day."

Security specialists advise everyone to follow a few simple rules to protect their passwords:

  • Use hard-to-guess passwords. That wouldn't have made a difference in the Twitter case, but not every online service uses hashing, and some that do still rely on older, easier-to-decode versions.
  • Never reuse passwords. If a bad guy manages to get one of your passwords and you're using it on multiple sites, he has the key to your data on all of them.
  • Use two-factor authentication, or 2fa, a process that requires you get an extra one-time-only code through a text message or an app on your phone every time you log in. Google offers 2fa service, which more companies and sites are adopting as an added security option.

And remember: When you change your Twitter password, be sure to update it at any other site linked to your Twitter account. You can find your list of Twitter-linked accounts here.

NBC News Clone will keep curating essential reads for you — simplified and optimized.

×
AdBlock Detected!
Please disable it to support our content.

Related Articles

Donald Trump Presidency Updates - Politics and Government | NBC News Clone | Inflation Rates 2025 Analysis - Business and Economy | NBC News Clone | Latest Vaccine Developments - Health and Medicine | NBC News Clone | Ukraine Russia Conflict Updates - World News | NBC News Clone | Openai Chatgpt News - Technology and Innovation | NBC News Clone | 2024 Paris Games Highlights - Sports and Recreation | NBC News Clone | Extreme Weather Events - Weather and Climate | NBC News Clone | Hollywood Updates - Entertainment and Celebrity | NBC News Clone | Government Transparency - Investigations and Analysis | NBC News Clone | Community Stories - Local News and Communities | NBC News Clone