Heads up, Twitter users: now’s the time to revoke and reestablish access rights for any third-party app that’s tied to your Twitter account. The warning comes on the heels of an attack in which a hacker leaked what he called access credentials for 15,167 Twitter users.
The information was uploaded Tuesday to the Zippyshare website as a 3.7-M.B. “twitter-accounts.txt” file. In an interview with Techworm, the Mauritania-based hacker said he compromised “the entire database of users on Twitter” and that “no account is safe.”
The hacker also claims to have more stolen information and is reportedly deciding whether or not to release it. Although the information doesn’t include passwords, it does include Twitter IDs and links to profile pictures, as well as OAuth tokens, adopted by Twitter in 2010 to allow developers to create applications that can directly access Twitter without asking for a password.
Twitter says the system has not been compromised by the attack. Our take? It’s always better to be safe than sorry, which is why you should go ahead and revoke and reauthorize access rights for all third-party apps. As a result, current OAuth tokens will become invalid and new ones issued, which will help protect your account.
Just log in to your Twitter account, click Settings and then Apps. You’ll see a list of apps that can access your Twitter account. Hit Revoke Access next to the app.
You’ll then have to individually add the apps back to your Twitter account—a pain, sure, but not as bad as having your account (or that of a client’s) hacked. And as an extra precaution, you might want to go ahead and change your Twitter password, too.
In the meantime, we’ll continue to keep you updated on the situation. After all, there’s never a dull moment on the interwebz!
Shelly Kramer is a Principal Analyst and Founding Partner at Futurum Research. A serial entrepreneur with a technology centric focus, she has worked alongside some of the world’s largest brands to embrace disruption and spur innovation, understand and address the realities of the connected customer, and help navigate the process of digital transformation. She brings 20 years’ experience as a brand strategist to her work at Futurum, and has deep experience helping global companies with marketing challenges, GTM strategies, messaging develoment, and driving strategy and digital transformation for B2B brands across multiple verticals. Shelly’s coverage areas include Collaboration/CX/SaaS, platforms, ESG, and Cybersecurity, as well as topics and trends related to the Future of Work, the transformation of the workplace and how people and technology are driving that transformation. A transplanted New Yorker, she has learned to love life in the Midwest, and has firsthand experience that some of the most innovative minds and most successful companies in the world also happen to live in “flyover country.”
