The company Twitter has recommended users to change their password because they found the keys in a legible format in an internal log. This finding exposed the security of users by allowing a person with access to that blog could read the password of users and enter without their consent. The incident was reported by the same company on May 3, 2018 through its TwitterSupport channel
Communication is normal before regulations that sanction companies for unauthorized disclosure or reporting of security incidents where there is user data.
Twitter has not indicated how long the data has been exposed, however, the report “Verizon 2018 Data Breach Investigations Report” indicates that 49% of the incidents are detected after several months. Do not assume that you are exempt from these types of incidents and that they only happen to large companies. Partner Andrés Casas of Risk Advisory of Deloitte indicated “Although this incident has been produced outside the Dominican Republic border, it is important that we execute the necessary actions to protect
Here are some tips from Deloitte:
What should I do if I used the password for other applications or social networks?
Replace the passwords where you used the same key.
Use composite passwords that change based on each site and maintain a root. For example, if the person defines as root “apple” and has an account on Twitter and another on Facebook, you can use the key “manzanaTwt” for the first social network and “manzanaFbk” for the second.
Use the double authentication factor to access Twitter (https://help.twitter.com/managing-your-account/two-factor-authentication).