General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsTwitter hacked, up to 250,000 accounts may have been compromised
It's been a rough week for security breaches, and Twitter has just announced it was a victim of attacks this week as well. In a blog post, the company states that during this past week it detected "unusual access patterns" that led it to discovered unauthorized attempts to access user's data. Twitter even discovered one attack as it was happening, and was able to shut it down shortly thereafter. However, Twitter's post-mortem revealed that the perpetrators of the attack may have had access to account information for approximately 250,000 different users. According to the company, "usernames, email addresses, session tokens and encrypted/salted versions of passwords" would have been available.
Twitter has reset the passwords and revoked session tokens for all of the compromised accounts; users that were compromised should be receiving emails notifying them of the reset shortly. Users will be required to create new passwords from scratch.
"This attack was not the work of amateurs, and we do not believe it was an isolated incident," Twitter's Director of Information Security, Bob Lord, writes in the company's post. "For that reason we felt that it was important to publicize this attack while we still gather information, and we are helping government and federal law enforcement in their effort to find and prosecute these attackers to make the Internet safer for all users."
Update: We just spoke with a Twitter representative that stressed that the company doesn't have definitive evidence that the accounts were compromised at this time, and that the steps being taken today are a preventative measure. Twitter's investigation is ongoing.
http://www.theverge.com/2013/2/1/3942660/twitter-was-also-attacked-this-week-passwords-for-up-to-250000-users-compromised
TheCowsCameHome
(40,169 posts)I guess.