Tom Olzak

Twitter hacked. So what’s new?

In Access Controls, Password Management, Social Networking on February 3, 2013 at 16:31

Twitter reported last week that about 250,000 customers might have had their usernames, email addresses, session tokens, and password hashes stolen.  This is just one more instance in which the social networking world is shown as having a humongous target on its collective back.  Anyone believing anything is safe when posted on Facebook, Twitter, or any other social network is just kidding themselves.  This doesn’t mean that Facebook, for example, doesn’t care about your information.  What it means is that cyber-criminals are attracted to social networking sites like Trekkers to a George Takei book signing.  (In the interest of full disclosure, I fall into the Trekker category.)

Caution about the credentials used to access these sites is just as important as what not to post: maybe more.  However, the normal user likely uses the same password for Twitter as he does for BYOD devices, bank logins, etc.  Twitter gets it and has tried to inform its customers.  An entry in Twitter Blog reads,

“Make sure you use a strong password – at least 10 (but more is better) characters and a mixture of upper- and lowercase letters, numbers, and symbols – that you are not using for any other accounts or sites. Using the same password for multiple online accounts significantly increases your odds of being compromised.”

If you have users who don’t get it yet, gently help them see the light.

%d bloggers like this: