Twitter confirmed that it had investigated claims of Twitter @names and passwords available online, and it was confident the details were not obtained from a hack of its own servers. Both security experts and Twitter believe that the database of records could have been created by combining information from the hacks of other services or from password-stealing malware.
Twitter added that in each of the third-party password disclosures, the service cross-checked the data with its own records, which resulted in identifying a number of Twitter accounts for extra protection. The company confirmed that accounts with direct password exposure were locked and now require the account owner to reset a password. While the company didn’t state the exact number of accounts affected, the number is thought to be in the millions. The affected users have been notified via email. Even if you did not receive the email but attempt to log into Twitter, you will find your account locked.
This news follows a number of high-profile Twitter hacks that took place just a few days ago – accounts of Mark Zuckerberg, Katy Perry, and even the official NFL account. All of them were blamed on the reuse of usernames and passwords across various websites.
Twitter recommends using unique passwords and activating two-step verification, which requires verification of login attempts to help protect the accounts.
Sourced from torrentfreak