Twitter passwords compromised

The cause of the compromise is not described in detail in Twitter’s email — it just says “Twitter believes that your account may have been compromised by a website or service not associated with Twitter”.


  • adrianoconnor

    I didn’t read the article, but I wouldn’t be surprised if this is a social engineering thing — how many times do you type your Twitter username and password in that little pop-up window to connect another ‘cloud’ service up to your Twitter account? I did that very thing earlier today to post a Discus comment after I rebooted. Well, it would be so easy to spoof that page and scrape somebody’s details. Who checks that it really is Twitter (outside a handful of us nerds, that is)?. If that isn’t happening, right now, I’d be amazed.

    • Steven Fisher

      Yup. Seems obvious to me. Still a problem, of course.

  • And because we link Twitter with blog commenting systems, Facebook, Instagram, Google, etc. – our entire digital password collection is in jeopardy. Nice!

  • I witnessed several friends’ Twitter accounts get hacked over the past couple of weeks, and just the other day mine got hacked, too. In each case the account was used to send out a spam link tweet, though with theirs it was via DM, while mine was a regular tweet.

    I changed my password.

  • I received this email this morning for my main account that I rarely use, and sure enough, I had been compromised. According to a friend, “I” had apparently tweeted something about women working from home.