Twitter discloses a problem with the password reset system. The platform has chosen to disconnect certain users preventively. An additional incident in an already difficult context.
Twitter has just made public an “incident” affecting the accounts of an unspecified number of users who had chosen to reset their passwords. According to the company, a “bug” introduced sometime last year prevented users from logging out of their accounts on all devices after initiating the password reset procedure.
Twitter discloses an incident with the password reset system
“If you changed your password on one device, but still had a session open on another device, that session may not have closed,” Twitter explained in a brief blog post. “Web sessions were not impacted and were closed properly.”
Twitter explains that it “preventively” disconnected certain users as a result of this bug. The company attributed the issue to “a change in the systems that handle password resets” that took place in 2021. A Twitter spokesperson declined to specify when this change took place specifically or how many times. users have been impacted. “I can say that for most of them it wouldn’t have caused any issues or compromised any account,” he said.
The platform has chosen to preventively disconnect certain users
Although Twitter claims that “most of them” would not have had their accounts compromised, news of this incident may be concerning for those who have used shared devices or lost a device or are in trouble. had one stolen last year.
An additional incident in an already difficult context
Twitter’s disclosure of the incident comes as the company is still reeling from allegations by its former chief security officer who filed a lawsuit accusing the company of “grossly negligent” security practices. Twitter hasn’t really reacted to any of this yet, apparently preferring to focus on the ongoing litigation with Elon Musk. The latter is using the whistleblower’s accusations in his case to get out of his $44 billion takeover bid.