Twitter’s chief technology officers recently reached out to all users and urged them to change their passwords as fast they can. According to the Twitter’s representative, due to a coding bug, visible passwords are being stored locally. No incidents were reported as far as the company knows.
Twitter Coding Bug Affected GitHub As Well
At the beginning of this week, Parag Agrawal, Twitter’s head of technology, uploaded a new post on Twitter’s blog in which he urged all users to update their passwords.
Agrawal said that the company’s tech team discovered a coding bug which makes all users’ passwords visible. The passwords, which were found to be stored in a local log, can be downloaded and use to exploit any Twitter user.
As explained by Twitter’s chief of technology, the company uses a hashing function, called bcrypt, in order to secure the user’s passwords. This function assigns the password a random set of letters and mathematical characters.
The newly-discovered bug disrupts the hashing process, the end result being visible passwords. According to Agrawal’s bug post, his team manages to isolate and deal with the issue but to be extra safe; users should hop on their devices and change their passwords as soon as possible. So far, the company hasn’t received any complaints about hacked accounts.
It would appear that the same coding bug has affected GitHub, among others.
To change the password, you should head to your “Setting & Privacy” section and to access the “Password” tab. Once there, you will be prompted to enter the existing password and to type two times your new password.
Furthermore, if you want to be sure that your personal data never leaves your device, you could also activate the two-factor authentication function. To do so, you will need to click on the “Settings & Privacy” button and look under “Login verification.”