xxMATTGxx
02-02-2013, 12:43 AM
It's been a rough week for security breaches, and Twitter has just announced it was a victim of attacks this week as well. In a blog post, the company states that during this past week it detected "unusual access patterns" that led it to discovered unauthorized attempts to access user's data. Twitter even discovered one attack as it was happening, and was able to shut it down shortly thereafter. However, Twitter's post-mortem revealed that the perpetrators of the attack had access to account information for approximately 250,000 different users. According to the company, "usernames, email addresses, session tokens and encrypted/salted versions of passwords" were all available.
Twitter has reset the passwords and revoked session tokens for all of the compromised accounts; users that were compromised should be receiving emails notifying them of the reset shortly. Users wil be required to create new passwords from scratch.
This comes as just the latest in a series of high-profile security breachers that have been revealed this week. Both the Wall Street Journal and the New York Times revealed this week that they had been hacked, identifying hackers from China as the likely culprits. While Twitter does not directly make similar accusations, it does warn that "The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked."
"This attack was not the work of amateurs, and we do not believe it was an isolated incident," Twitter's Director of Information Security, Bob Lord, writes in the company's post. "For that reason we felt that it was important to publicize this attack while we still gather information, and we are helping government and federal law enforcement in their effort to find and prosecute these attackers to make the Internet safer for all users."
Source: http://www.theverge.com/2013/2/1/3942660/twitter-was-also-attacked-this-week-passwords-for-up-to-250000-users-compromised
Twitter's Article: http://blog.twitter.com/2013/02/keeping-our-users-secure.html
---------------
Best to login and see if you need to change your password!
Twitter has reset the passwords and revoked session tokens for all of the compromised accounts; users that were compromised should be receiving emails notifying them of the reset shortly. Users wil be required to create new passwords from scratch.
This comes as just the latest in a series of high-profile security breachers that have been revealed this week. Both the Wall Street Journal and the New York Times revealed this week that they had been hacked, identifying hackers from China as the likely culprits. While Twitter does not directly make similar accusations, it does warn that "The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked."
"This attack was not the work of amateurs, and we do not believe it was an isolated incident," Twitter's Director of Information Security, Bob Lord, writes in the company's post. "For that reason we felt that it was important to publicize this attack while we still gather information, and we are helping government and federal law enforcement in their effort to find and prosecute these attackers to make the Internet safer for all users."
Source: http://www.theverge.com/2013/2/1/3942660/twitter-was-also-attacked-this-week-passwords-for-up-to-250000-users-compromised
Twitter's Article: http://blog.twitter.com/2013/02/keeping-our-users-secure.html
---------------
Best to login and see if you need to change your password!