San Francisco, United States: Twitter Inc urged its more than 330 million users to change their passwords after a glitch caused some of them to be stored in plain text on its internal computer system.
The social network said it had fixed the glitch and that an internal investigation had found no indication passwords were stolen or misused by insiders, but it urged all users to consider changing their passwords "out of an abundance of caution."
The blog did not say how many passwords were affected. But a person familiar with the company's response said the number was "substantial" and that they were exposed for "several months."
Twitter discovered the bug a few weeks ago and has reported it to some regulators, said the person, who was not authorized to discuss the matter.
The disclosure comes as lawmakers and regulators around the world scrutinize the way that companies store and secure consumer data, after a string of security incidents that have come to light at firms including Equifax Inc, Facebook Inc and Uber.
The European Union is due to start enforcing a strict new privacy law, known as the General Data Protection Regulation, that includes steep fees for violating its terms.
The glitch was related to Twitter's use of a technology known as "hashing" that masks passwords as a user enters them by replacing them with numbers and letters, according to the blog.
A bug caused the passwords to be written on an internal computer log before the hashing process was completed, the blog said.
"We are very sorry this happened," the Twitter blog said.
Twitter's share price was down 1 percent in extended trade at $30.35, after gaining 0.4 percent during the session.
The company advised users to take precautions to ensure that their accounts are safe, including changing passwords and enabling Twitter's two-factor authentication service to help prevent accounts from being hijacked.
The social network said it had fixed the glitch and that an internal investigation had found no indication passwords were stolen or misused by insiders, but it urged all users to consider changing their passwords "out of an abundance of caution."
The blog did not say how many passwords were affected. But a person familiar with the company's response said the number was "substantial" and that they were exposed for "several months."
The disclosure comes as lawmakers and regulators around the world scrutinize the way that companies store and secure consumer data, after a string of security incidents that have come to light at firms including Equifax Inc, Facebook Inc and Uber.
The European Union is due to start enforcing a strict new privacy law, known as the General Data Protection Regulation, that includes steep fees for violating its terms.
Advertisement
A bug caused the passwords to be written on an internal computer log before the hashing process was completed, the blog said.
Advertisement
Twitter's share price was down 1 percent in extended trade at $30.35, after gaining 0.4 percent during the session.
Advertisement
COMMENTS
Advertisement
X Said to Be Developing Feature That Lets Users Disable Links in Post Replies Joe Biden Won't Contest US Presidential Polls: Full Text Of Announcement "I Bow Low...": Anand Mahindra Praises Elderly Gujarat Man For His Unique Cycle Designs INS Brahmaputra Severely Damaged In Fire, Lying On Its Side; Sailor Missing Question On Atoms In NEET-UG Physics Section Catches Supreme Court's Eye Elon Musk Reacts After Vivek Ramaswamy's Biden Prediction Goes Viral Top Six Car Launches In August 2024: Mahindra Thar Roxx To Tata Curvv Kamala Harris' Campaign Debuts New Official Election Logo 1 Killed, 34 Injured After DTC Bus Rams Metro Pillar In West Delhi Track Latest News Live on NDTV.com and get news updates from India and around the world.