Complete Story


Twitter says it found a password bug and that you should change yours


Twitter said on Thursday that it found a bug in how it stores passwords, which meant they weren't scrambled to protect them from attack.

Twitter said it hashes passwords so that they're stored as a random mix of numbers and letters. It discovered password logs where the passwords hadn't been hashed, however.

 "Due to a bug, passwords were written to an internal log before completing the hashing process," Twitter explained in a blog post. "We found this error ourselves, removed the passwords, and are implementing plans to prevent this bug from happening again."
Another article, from Krebs on Security....

Printer-Friendly Version