Saturday, February 2, 2013
Hackers breach Twitter and 250,000 accounts compromised
"the attackers may have had access to limited user information – usernames, email addresses, session tokens and encrypted/salted versions of passwords" said Bob Lord ,Director of Information Security, at Twitter.
For security reasons twitter have reset passwords and revoked session tokens for these suspected compromised accounts. "This attack was not the work of amateurs and we do not believe it was an isolated incident," he added.
"The attackers were extremely sophisticated and we believe other companies and organisations have also been recently similarly attacked."
Twitter have not mention that how hackers were able to infiltrate Twitter’s systems, but Twitter’s blog post alluded that hackers had broken in through a zero day vulnerability in Oracle’s Java software.
Some media portals also relate this attack to Hacktivist Anonymous Group incorrectly, because twitter itself no where mention anything about who is attacker! If you are not using good password hygiene, take a moment now to change your Twitter passwords.