Hmm, I saw this story, changed my account password(s). Then I noticed that I'd a... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		pbhjpbhj on Feb 2, 2013 \| parent \| context \| favorite \| on: Twitter Hacked – 250,000 User Accounts Potentially... Hmm, I saw this story, changed my account password(s). Then I noticed that I'd already had the email. The email said that the password had been reset (as in dewitt's post) but I'd just logged in - after the claimed reset - with the old credentials. That's kinda worrying.

dserodio on Feb 2, 2013 [–]

Both my Mac and Android twitter clients are still logged in, and in the e-mail they said that session tickets had been invalidated...

dchest on Feb 2, 2013 | [–]

These clients use a different authentication mechanism. Looks like authentication tokens for clients weren't leaked.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact