We have seen a few many news this week about media companies, news portals, and other companies being attacked by hackers to steal very important information which is of great importance for the hackers. We have seen such reports from the New York Times, the Wall Street Journal, and the Washington post. We also know that the United States government has been warding off millions of attacks on its computers from different parts of the world, every day.
Today, Twitter has come forward to announce its own hacking story. The company sent out emails to a few Twitter users saying that their Twitter accounts may have been hacked by hackers, and that it would be better if they change their Twitter passwords. The email said that the accounts “may have been compromised by a website or service not associated with Twitter.” So if you got one such email, it is not a joke, you better change your password right away.
Then, in a blog post on the company’s blog, the company’s director of information security, Bob Lord, said that almost 250,000 Twitter accounts have been hacked. The blog post said that the hackers might have accessed session tokens and passwords of these compromised accounts. The passwords, the blog post says, were in encrypted form and might restrict the use of these passwords to gain access to the accounts just yet. But once they are decrypted, in case they do, they will be able to log in.
The session tokens, on the other hand, are unique value assigned to every user on a computer to avoid signing into a service every time they need to use it on that computer. Sometimes these session tokens can also be used to gain access to accounts.
The service also says that this attack, like many others that took place this week, was done by highly experienced hackers and were similar to other attacks. He indicated that the hackers from China who are all over the news might have been responsible for this as well.
“This attack was not the work of amateurs, and we do not believe it was an isolated incident,” Lord writes. “The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked.”
So, even if you have not got any such email from Twitter, it is better to change your Twitter account password to be able to sleep in peace, somewhat.