[conspire] (forw) [svlug] Twitter users: password change soon-ish
Rick Moen
rick at linuxmafia.com
Thu May 3 15:05:43 PDT 2018
----- Forwarded message from Rick Moen <rick at linuxmafia.com> -----
Date: Thu, 3 May 2018 14:38:45 -0700
From: Rick Moen <rick at linuxmafia.com>
To: svlug at lists.svlug.org
Subject: [svlug] Twitter users: password change soon-ish
Organization: If you lived here, you'd be $HOME already.
https://twitter.com/TwitterSupport/status/992132808192634881
@TwitterSupport
We recently found a bug that stored passwords unmasked in an internal
log. We fixed the bug and have no indication of a breach or misuse by
anyone. As a precaution, consider changing your password on all services
where you’ve used this password.
A blog entry
(https://blog.twitter.com/official/en_us/topics/company/2018/keeping-your-account-secure.html)
gives a small amount more detail:
We mask passwords through a process called hashing using a function
known as bcrypt [...]. Due to a bug, passwords were written to an
internal log before completing the hashing process. We found this
error ourselves, removed the passwords, and are implementing plans
to prevent this bug from happening again.
_______________________________________________
svlug mailing list
svlug at lists.svlug.org
http://lists.svlug.org/lists/listinfo/svlug
----- End forwarded message -----
More information about the conspire
mailing list