On Thursday, May 3rd, Twitter warned over 330 million users to change their passwords. A bug in their system meant these passwords had previously been stored in an insecure internal log. Although there was no indication of a breach or misuse, it is strongly recommended to change your password on Twitter and any other service where you use this same password. Keep reading for what this bug has taught us about online security.
We recently found a bug that stored passwords unmasked in an internal log. We fixed the bug and have no indication of a breach or misuse by anyone. As a precaution, consider changing your password on all services where you’ve used this password. https://t.co/RyEDvQOTaZ
— Twitter Support (@TwitterSupport) May 3, 2018
Here’s what Twitter suggests you do:
- Change your password on Twitter and any other service where you may have used the same password.
- Use a strong password with numbers, upper and lower case letters and special characters such as ! @ # $ % & * ( ) % +.
- Enable login verification, or two factor authentication.
What this bug has taught us about online security:
- You need strong, unique passwords everywhere. If someone has one of your passwords and you use it everywhere they can access all of your accounts.
- Update your passwords regularly. This bug has been around for a while Twitter flagged it only this week. How many other companies could have a bug or breach and not even know it?
- Using a password manager makes having secure accounts easy. We recommend Dashlane. It can generate unique, strong passwords with one click. You also get security alerts every time you need to update a password for preventative protection – and the best part, it’s free!
Last year 2.6 billion online accounts were breached. Dashlane is the easy solution. Try is for FREE today. The only way to protect your identity and online accounts is to use unique passwords everywhere. makes that easy.