Twitter saying Thursday it discovered a bug that unmasked encrypted passwords in its inside log. And it is suggesting its 330 million customers reset these passwords. Jane Lee studies.

Twitter is telling all customers that they need to change their passwords, now. 

The firm’s chief know-how officer, Parag Agrawal, said in a blog post that it had just lately discovered a bug that saved passwords, unmasked, in an inside log. 

“We have fixed the bug, and our investigation shows no indication of breach or misuse by anyone,” he wrote. “We are very sorry this happened.”

CEO Jack Dorsey echoed Agrawal, saying in a tweet that the corporate believes “it’s important for us to be open about this internal defect.”

The San Francisco-based firm suggested its 336 million customers to vary their password on Twitter and another service the place they might have used the identical password. 

While Twitter is being open and upfront about their error, the truth that the passwords have been doubtlessly accessible is disconcerting. It is at present unclear what number of passwords have been listed on the interior log. 

How to vary your password 

The firm is being proactive with notifying customers to vary their passwords after they open the Twitter web site or app, however when you do not see a pop-up here’s what you are able to do. 

To change your Twitter password faucet on your profile image on the Twitter web site or cell app. On the online, you will then need to click on on the “Settings and privacy” choice from the drop-down checklist. Then go to the tab on the left-hand facet labeled “Password.” 

If you might be altering it from your cellphone you will need to click on on “Settings and privacy,” then “Account” adopted by “Change password.” 

If you do not know your password you may all the time reset it by selecting the “Forgot password?” choice from the login display and following the steps from there. 

One different factor you would possibly need to do whereas your altering passwords: Set up two-factor authentication. This small transfer will go a good distance in defending your account from undesirable logins sooner or later. 

More: It’s high time to add 2FA to your online accounts

Twitter’s (TWTR) shares misplaced 1% after hours. 

Contributing: Laura Mandaro

Follow Eli Blumenthal on Twitter @eliblumenthal

Read or Share this story: