Twitter Discloses User Password Theft Scheme Via Torrent Sites

Twitter said it has identified a scheme to try to steal user account names and passwords and is asking some users to update their passwords as a result.

The micro-blogging service disclosed in a notice to developers late Tuesday that an unidentified person had been creating so-called “torrent” sites and forums for “a number of years” with the sole purpose of getting users to input user names and passwords the person could use to gain access to Twitter accounts.

The person “waited for the forums and sites to get popular and then used those exploits to get access to the username, email address, and password of every person who had signed up,” the notice stated.

Torrent sites are those that allow users to search for files sent through file-sharing service BitTorrent. Twitter didn’t identify any specific sites and forums it believes to be gathering the data.

Read the rest of this post on the original site

Must-Reads from other Websites

Panos Mourdoukoutas

Why Apple Should Buy China’s Xiaomi

Paul Graham

What I Didn’t Say

Benjamin Bratton

We Need to Talk About TED

Mat Honan

I, Glasshole: My Year With Google Glass

Chris Ware

All Together Now

Corey S. Powell and Laurie Gwen Shapiro

The Sculpture on the Moon

About Voices

Along with original content and posts from across the Dow Jones network, this section of AllThingsD includes Must-Reads From Other Websites — pieces we’ve read, discussions we’ve followed, stuff we like. Six posts from external sites are included here each weekday, but we only run the headlines. We link to the original sites for the rest. These posts are explicitly labeled, so it’s clear that the content comes from other websites, and for clarity’s sake, all outside posts run against a pink background.

We also solicit original full-length posts and accept some unsolicited submissions.

Read more »