Twitter unearths Password recovery worm, Says No Passwords were Leaked

Twitter said in a weblog submit Wednesday that a worm in its password restoration machine can have impacted about 10,000 accounts. The computer virus was once energetic for approximately 24 hours final week, earlier than Twitter discovered and quashed it. Twitter claims the glitch didn’t leak any passwords, however it will have revealed e-mail addresses and phone numbers associated with affected bills.

“We take these incidents very severely, and we’re sorry this took place,” the corporate wrote. “Any user that we find to have exploited the trojan horse to get admission to any other account’s knowledge might be completely suspended, and we can also be engaging legislation enforcement as acceptable so they may habits a radical investigation and produce charges as warranted.”

Twitter also recommended individuals to exercise “excellent account safety hygiene.” the company stated it has notified all affected customers.

[by way of Ars Technica]