Home / News / Internet News / Twitter hacked – 250,000 user account details stolen

Twitter hacked – 250,000 user account details stolen

evan kypreos


twitter hacked
Twitter has been hacked

Twitter has admitted that up to 250,000 user account security details, including email address, usernames and passwords were stolen by sophisticated hackers this week.

Having detected suspicious activity and repeated unauthorised access attempts, Twitter discovered one live attack which it promptly shut down. However the attack was not stopped before user information was stolen, including encrypted versions of user passwords.

Bob Lord, Director of Information Security for Twitter, admitted the security breach in blog post today. He explained “our investigation has thus far indicated that the attackers may have had access to limited user information … for approximately 250,000 users.” as well as expressing that the attack was “extremely sophisticated” and conducted by a professional hacker, or group of hackers.

Twitter has reset passwords for the compromised accounts and sent emails to all those thought to be affected. Bob Lord also suggests that all Twitter users ensure they use strong passwords for their account and not to use the same password for more than one account. “Make sure you use a strong password – at least 10 (but more is better) characters and a mixture of upper- and lowercase letters, numbers, and symbols – that you are not using for any other accounts or sites.” he advises.

The admission follows a scare that up to 55,000 user account details were stolen in 2012, although Twitter confirmed that it had not been compromised on that occasion. To date successful attempts to steal Twitter user data was restricted to phishing scams where users would divulge usernames and passwords on spoof Twitter sites. This is the first occasion that Twitter has admitted that personal data has been directly hacked.

Suspicion for the weakness that led to the theft appears to point to towards users having Java enabled on their browsers. Apple and Mozilla both recently disabled Java by default on their browsers, Safari and Firefox respectively. The finger pointing also follows advice from the U.S. Department of Homeland Security experts encouraging users to disable Java from browsers. Java is used in billions of devices worldwide, from personal computers to mobile phones and TVs.

With over 500 million existing accounts and 400 million tweets being sent a day, Twitter is one of the biggest and most active social networks in the world. The 250,000 Twitter users compromised in the hack account for less than 0.05% of all Twitter users.

If you would like to disable Java from your browsers the instructions for all browsers can be found on the Java.com website here.

Have you been affected by the Twitter hack? Have you had your account details phished in the past? Let us know via the Trusted Reviews Twitter (ironic we know) and Facebook feeds or through the comment boxes below.

Source: Twitter


February 2, 2013, 4:50 pm

I keep seeing this advice about disabling Java on my browser. I'm reasonably computer savvy, but I am confused about what this advice entails.

My browser (Firefox) shows two 'Java' entries:

Java (TM) Platform SE
Java Deployment Toolkit

Then I seem to have 64-bit java for Windows 64 bit OS, as well as 32-bit for the Firefox.

But tech sites offering this advice just blather on obout 'Java', like there is no scope for confusion. Perhaps you could add some clarity. If I get rid of Java altogether, I can't use things like Geogebra which runs on Java (independent of the browser).


February 2, 2013, 4:58 pm

Java is used for loads of applications so it's probably best not to delete it totally from your PC until adoption falters.

It's the Java (TM) Platform SE you want to disable in your case.

To disable it in Firefox:

1. At the top of the Firefox window, click on the Firefox button (Tools menu in Windows XP), and then click Add-ons. The Add-ons Manager tab will open.

2. In the Add-ons Manager tab, select the Plugins panel.

3. Click on the Java (TM) Platform plugin to select it.

4. Click on the Disable button (if the button says Enable, Java is already disabled).

5. Restart Firefox

Java applets will no longer be permitted to launch in Firefox.


February 2, 2013, 5:34 pm

thanks for that, very clear.

So what is the 'other' Java that lists in the Firefox Add-ons (Java Deployment Toolkit)?
I'm pretty sure that when you instal Java, you get both the 'Deployment Toolkit' and the 'Platform SE' all in one go. I appreciate that you can disable them independently of one another, and I understand your advice, but I'm still keen to get to the root of my original confusion.

comments powered by Disqus