Menu
Twitter locks some accounts after passwords exposed

Twitter locks some accounts after passwords exposed

The measure follows the leak of nearly 33 million purported usernames and passwords

Twitter said it had locked down and called for a password reset of some accounts after an unconfirmed claim of a leak of nearly 33 million usernames and passwords to the social network.

The company said the information was not obtained from a hack of its servers, and speculated that the information may have been gathered from other recent breaches, malware on victim machines that are stealing passwords for all sites, or a combination of both.

“In each of the recent password disclosures, we cross-checked the data with our records. As a result, a number of Twitter accounts were identified for extra protection. Accounts with direct password exposure were locked and require a password reset by the account owner,” Twitter’s Trust & Information Security Officer, Michael Coates said in a blog post on Friday.

Millions of users have been notified by Twitter that their accounts are at risk of being taken over, reported the Wall Street Journal on Thursday.  The company did not specify to the newspaper how many users were notified and forced to change their passwords but said that the total is in the millions.

Hacked information database LeakedSource revealed on Wednesday that it had acquired a database of 32.8 million records containing Twitter usernames, emails and passwords from a user who goes by the alias Tessa88@exploit.im., but there were questions from some experts as to the authenticity of the data.

The same user provided LeakedSource with names and passwords of alleged users of MySpace.com and VK.com.

“We have very strong evidence that Twitter was not hacked, rather the consumer was,” LeakedSource said. It pointed out that the passwords were in plain text with no encryption or hashing. Twitter said it used a password hashing function called bcrypt. The credentials are “real and valid” as out of 15 users asked, all 15 verified their passwords, LeakedSource said.


Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Featured

Slideshows

Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Show Comments