Jump to Main ContentJump to Primary Navigation
Top

Someone may have just stolen 32 million passwords from Twitter

twitter.jpg

Another day, another reason to hurriedly check your social media accounts.

Days after hackers accessed Mark Zuckerberg's Twitter and Pinterest accounts with an old password they discovered in a LinkedIn leak, it's the turn of Twitter to sweat nervously as news breaks that as many as 32 million account details are being sold on the markets of the dark web. 

LeakedSource, a website that provides a searchable database of 1.8 million leaked account details from the likes of MySpace, LinkedIn and Badoo, has recently added "tens of millions" of Twitter accounts to its files.

"This data set was provided to us by a user who goes by the alias 'Tessa88@exploit.im'," explains the site," and has given us permission to name them in this blog."

'Tessa88' has a track record of providing legitimate hack details, having recently shared the leaked accounts of 100 million users of the Russian site VK.com. 

A Twitter spokesperson has stated that the service is confident its networks haven't been breached, saying "In fact, we’ve been working to help keep accounts protected by checking our data against what’s been shared from recent other password leaks."

However, LeakedSource believes the cache of details may have been obtained by malware - malicious software installed on users' Chrome and Firefox web browsers that captured their Twitter details covertly. The majority of the leaked details appear to be from Russian accounts.

What should you do about it? 

Well, you can check LeakedSource to see if your details are listed - but even if they're not, you'd want to take the same precautions:

  • Don't use the same single password for multiple accounts
  • Don't reuse an old password, even if you're sure you don't use it for other sites
  • Do set up two-step authentication when websites allow it. While a hacker might get your password, they'll be stumped if they haven't got access to your phone
  • Don't open emails that tell you 'Your account has been compromised! Re-enter your details here!'
  • Do be suspicious of every request for your details, no matter how legitimate the website or email request looks

[Via: TechCrunch]

Related

zuckerberg.jpg

Mark Zuckerberg was hacked because he used this (rubbish) password

perry4.jpg

Katy Perry's Twitter hack was embarrassing for everyone involved

watchdogs.jpg

Everything you need to know about Watch Dogs 2

Comments

More

Presenting the Nintendo SwitchCube (which you definitely want)

This has to go further than Photoshop

by Matt Tate
28 Mar 2017

In the future, human hearts might be rebuilt with spinach leaves

We've always known spinach is good for your muscles, but... not like this

by Tom Mendelsohn
28 Mar 2017

Apple has patented a new laptop chassis which is powered by your phone

Is this the future of laptops?

by Dave Fawbert
27 Mar 2017

Leaked poster appears to confirm Destiny 2 release date

And it sounds like they're doing a beta in June

by Matt Tate
23 Mar 2017

Android users can finally play Super Mario Run - and definitely should

Extended toilet breaks for everyone

by Matt Tate
23 Mar 2017

Apple have released a red iPhone and that is very important

And not just because it's red

by Gary Ogden
21 Mar 2017

Amazon's new Alexa update means it can bring you beer in two hours

"Alexa, we're going to need more booze"

by Matt Tate
21 Mar 2017

Forget traffic jams with this SUV that can drive over cars

Why has it taken so long to invent this?

by Dave Fawbert
21 Mar 2017

Zelda megafan controls his smart home with an ocarina

Pointless? Possibly. Are we envious? Definitely

by Matt Tate
20 Mar 2017

Why I pray every day for an 'SSX Tricky' remake

It's all about that Big Air Bonus

by Matt Tate
17 Mar 2017