A bug discovered in Twitter's internal systems has led to millions of passwords being stored insecurely.
(CCM) — The security of 330 million Twitter users' passwords has been compromised thanks to a software bug in the social network's internal computer systems, according to a BBC report.
Twitter has now warned all users to change their passwords, "out of an abundance of caution."
Jack Dorsey, Twitter's chief executive, explained in a Tweet that the passwords had been stored on an internal computer log before measures that were intended to prevent staff from seeing the passwords had taken effect.
"We recently discovered a bug where account passwords were being written to an internal log before completing a masking/hashing process," he said in the Tweet. "We’ve fixed, see no indication of breach or misuse, and believe it’s important for us to be open about this internal defect."
The company reported the bug to regulators "a few weeks ago," the BBC says.
Twitter has not revealed how many passwords were inadvertently made visible, but the number is "substantial" and they were on view for "several months," according to the report.
The company has advised users to turn on two-factor authentication as well as changing their passwords to help prevent security breaches in the future.
Image: © Denys Prykhodov - Shutterstock.com