A quarter of a million Twitter users have had their accounts compromised in the latest of a string of high-profile internet security breaches.
Twitter’s information security director Bob Lord said about 250,000 users’ passwords had been stolen, as well as usernames, emails and other data.
Affected users have had passwords invalidated and have been sent emails informing them.
The quandary however is you still have to be careful! If you get hold of one of these emails because, it could equally be a phishing attack, it could be someone pretending to be Twitter which in turn makes this situation even worse!
After the event it’s always too easy to point and suggest how this could have been avoided, but its still the case that proving the identity of the user is paramount. Using two factor authentication is the only way to insure the user is who they say they are. Its our opinion, as the inventors of tokenless authentication, to suggest the quickest, easiest and cheapest route is by using what you already have in your pocket – your mobile/cell phone. An SMS sent to your mobile, or using our app on a smart device or even a voice call to a landline, combined with a username and password the user already has, together provides the authentication needed to prove their identity in our online age.