Twitter resets passwords after phishing attack

Twitter reset passwords for an unknown number of users on Tuesday whose accounts appeared to have been compromised via phishing.

“As part of Twitter’s ongoing security efforts, we reset passwords for a small number of accounts that we believe may have been compromised offsite,” the company said in a statement.

Some Twitter users apparently “used their Twitter username and password to sign up for an untrusted third-party application which then posted Tweets to their account,” a spokeswoman said.

“While we’re still investigating and ensuring that the appropriate parties are notified, we do believe that the steps we’ve taken should ensure user safety,” the statement said. “We’ll continue to provide updates as warranted at @safety and @spam.”

Users who want information on what to do if their accounts have been compromised can visit http://twitter.zendesk.com/forums/10713/entries/31796 and learn how to use Twitter safely.


Story by: Elinor Mills

Date: February 2, 2010

See: http://news.cnet.com/8301-27080_3-10445898-245.html for more information