Twitter discovered a bug that has stored user passwords unmasked in an internal log without encryption. The company says they’ve fixed the problem that caused user passwords to be saved in plain text to their server. According to Reuters, someone close to the company said a substantial number of passwords were exposed for several months.
Twitter stated that they haven’t found misuse of passwords yet but precaution users to change their passwords.
Twitter hasn’t released how many passwords were saved but is directing all 336 million users to their Settings page to update their passwords. CEO Jack Dorsey tweeted about the security breach:
