Comments on: Twitter Hacked Again? Security Issues Continue

By: Shnay

Shnay — Sat, 14 Aug 2010 16:32:07 +0000

my twitter page is doin thesame thing….but how can i get it to log me on, and also i dont use twitter on the phone only a laptop. so i dont know if a have any messages, all i know is that it wont let me login or change my password, and it wont send the info to change my e-mail, and it say im locked out…PLZ HELP ME

By: Twitter Phishing Problem or Twitter Security Breach? | Deepweb

Twitter Phishing Problem or Twitter Security Breach? | Deepweb — Tue, 02 Feb 2010 09:04:19 +0000

[...] is a blog post about someone else’s experience (worse than mine, so [...]

By: What’s Up With Multiple Twitter Password Reset Emails? | Switech - Technology Evolution

Sat, 02 Jan 2010 10:17:09 +0000

[...] Jimmy Gardner at Tech Cocktail has posted regarding this issue as [...]

By: @ajag

@ajag — Wed, 30 Dec 2009 20:04:13 +0000

I got the e-mail once and ignored it. Not seen any problems.

By: Amy

Amy — Wed, 30 Dec 2009 04:25:43 +0000

I'm getting this on a work account. We use no 3rd party apps, have received no phishing emails, didn't click that link in the email that was supposedly from Twitter, but was locked out of my account and reset manually. Twice. I used not only different browsers, but different computers to do so. And yet I'm still getting these emails over and over.

What are the odds of this being a Twitter glitch?

By: bigoldgeek

bigoldgeek — Wed, 30 Dec 2009 03:53:34 +0000

No offense intended but your reply makes me even more suspicious. If you opened a different browser window from scratch so it didn't share the thread with the current one and copied the link carefully, pasting it in and checking for "typos" before hitting enter or better, doing what I suggested above, then you probably did verify it well enough.

If you clicked on it and just trusted your skills to detect a bogus link or some phishing detector then you probably blew it.

I'm in the industry 25 years now and I know there are bad guys cleverer than me – Plenty of them since I have to do all sorts of things in addition to security. Overconfidence is the enemy.

By: digitalsista

digitalsista — Wed, 30 Dec 2009 02:11:07 +0000

I am not surprised at this, twitter didn't give me access to my account on a few occasions.

By: Jane Quigley

Jane Quigley — Wed, 30 Dec 2009 02:04:09 +0000

Got one and changed my password, then 9 more and had to change again. Grrrrrr.
Anyway – Happy New Year!

By: jjgardner3

jjgardner3 — Wed, 30 Dec 2009 02:02:36 +0000

Yeah it is getting crazy. The twitter rep helping me out is great (Hi tiger) but he says someone is still attempting to access my account. I have all third party apps cut off, etc .. But as I said if you look at this http://bit.ly/6uvPR5, it appears to be pretty widespread, yet has not bubble up to a tipping point yet.

By: Frank Gruber

Frank Gruber — Wed, 30 Dec 2009 01:58:11 +0000

Again?!!? Are you serious?!

By: Jane Quigley

Jane Quigley — Wed, 30 Dec 2009 01:55:53 +0000

Just started getting the email again – 10 so far. Was just able to change again, but this is getting ridiculous.

By: Matt Albiniak

Matt Albiniak — Tue, 29 Dec 2009 22:57:31 +0000

This password issue isn't new, but the email that you've described is.

See Richard's (Tweetdeck dev team) from 11/13/2009:
http://support.tweetdeck.com/forums/60463/entries…

For those deciding not to click through, it's a problem with the password change getting pushed out to the API, which affects anyone using a 3rd party client (Tweetdeck, Tweetie, etc.) to connect to Twitter.

While you're chillaxin', logout of your third party apps. All of em. After you're done chillaxin', go back to Twitter.com, login, and choose a new password before you go to bed. Wake up the next morning, login to Twitter.com, then launch your 3rd part app.

@malbiniak seyz #beerme

By: jjgardner3

jjgardner3 — Tue, 29 Dec 2009 22:51:14 +0000

Thanks BigOldGeek, but I work in the field and am well aware of the measures to take. I checked everything was good. In the end it turned out to be a coincidence, but thanks for the vote of confidence

By: BigOldGeek

BigOldGeek — Tue, 29 Dec 2009 22:48:56 +0000

I think you probably didn't verify so well. If you get an email like that, open another browser and go find the password reset manually. Following any link is asking to get phished. There are plenty of ways to make the link appear to be a legitimate URL while it's actually sending you elsewhere.

By: Bob

Bob — Tue, 29 Dec 2009 22:25:59 +0000

Ahh, okay. I figured I was missing something – thanks for the clarification.

By: What’s Up With Multiple Twitter Password Reset Emails? | CenterNetworks

Tue, 29 Dec 2009 17:06:28 +0000

[...] Jimmy Gardner at Tech Cocktail has posted regarding this issue as [...]

By: centernetworks

centernetworks — Tue, 29 Dec 2009 17:01:25 +0000

wow! I wonder what is going on. Thanks for the link – I doubt that Twitter will say anything about the issue.

By: jjgardner3

jjgardner3 — Tue, 29 Dec 2009 16:55:51 +0000

Hi Bob
The emails I got were for another twitter account, but I verified their links.
The account I am locked out of I never got an email for, thats why I was saying I did not respond to any emails emails about it

By: Bob

Bob — Tue, 29 Dec 2009 16:50:39 +0000

I'm confused – you say you "did as they recommended" in regards to the email containing a password reset link, but then emphatically state that you did not respond to any phishing emails. Are you sure?

By: @deannie

@deannie — Tue, 29 Dec 2009 16:37:24 +0000

I didn't get the emails but I kept getting the message that Twitter wasn't available.

By: Jane Quigley

Jane Quigley — Tue, 29 Dec 2009 16:35:47 +0000

I had the same thing – I turned off all of my twitter clients, mobile and desktop and waited a few hours to retry. Good luck!

By: jjgardner3

jjgardner3 — Tue, 29 Dec 2009 16:31:23 +0000

Thanks Jane ! Hopefully I can get things resolved as well….
I just cant get to the reset stage … I get that locked out msg, been getting that since last night.

By: Jane Quigley

Jane Quigley — Tue, 29 Dec 2009 16:27:25 +0000

Had the same issue last night – and when I initially tried to change my password, it didn't work. I also kept getting the same email – 12 of them! Finally, I was able to get things changes and set this morning.