Get subscribed to our newsletter
Get interesting updates to your email inbox.
It is time to change your Twitter password now as the micro-blogging platform has asked its 336 million users to do so across its services after it discovered a bug that stored passwords in plain text in an internal system.
In a blog post on Thursday, Twitter said it recently identified a bug that stored passwords unmasked in an internal log.
“We have fixed the bug, and our investigation shows no indication of breach or misuse by anyone.
“Out of an abundance of caution, we ask that you consider changing your password on all services where you’ve used this password,” said Parag Agrawal, Chief Technology Officer at Twitter, adding that Twitter is sorry that this has happened.
“We recognise and appreciate the trust you place in us, and are committed to earning that trust every day,” he wrote.
Twitter masks passwords through a process called hashing using a function known as bcrypt, which replaces the actual password with a random set of numbers and letters that are stored in Twitter’s system.
“This allows our systems to validate your account credentials without revealing your password. This is an industry standard,” Agrawal noted.
Due to a bug, passwords were written to an internal log before completing the hashing process.
“We found this error ourselves, removed the passwords, and are implementing plans to prevent this bug from happening again,” Twitter said.
Agrawal advised people to change their passwords, enable two-factor authentication on their Twitter account and use a password manager to create strong, unique passwords on every service they use.
After the massive Facebook data scandal, a report in The Sunday Telegraph recently claimed that Twitter had also sold users’ data to a Cambridge Analytica (CA) researcher who collected the data of 87 million Facebook users without their knowledge — a charge that Twitter has denied.
According to the report, Twitter sold public data access “for one day” in 2015 to Aleksandr Kogan, then a psychology researcher with University of Cambridge, and his company Global Science Research (GSR).
In a statement given to IANS, Twitter said that based on the recent reports, they conducted their own internal review and did not find any access to private data about people who use Twitter.
Twitter reported a revenue of $665 million — an increase of 21 per cent year-over-year (yoy) — in the first quarter of 2018. (IANS)
Hackers have stolen crypto tokens worth $120 million from Blockchain-based decentralised finance (DeFi) platform BadgerDAO. Several crypto wallets were drained before the platform could stop the cyber attack. In a tweet, Badger said it has received reports of unauthorised withdrawals of user funds. "As Badger engineers investigate this, all smart contracts have been paused to prevent further withdrawals. Our investigation is ongoing and we will release further information as soon as possible," the company said late on Thursday.
According to the blockchain security and data analytics Peckshield, the various tokens stolen in the attack are worth about $120 million, reports The Verge. According to reports, someone inserted a malicious script in the user interface (UI) of their website. Badger has retained data forensics experts Chainalysis to explore the full scale of the incident and authorities in both the US and Canada have been informed. "Badger is cooperating fully with external investigations as well as proceeding with its own," it said. DeFi is a collective term for financial products and services that are open, decentralised and accessible to anyone. DeFi products open up financial services to anyone with an internet connection and they are largely owned and maintained by their users. While the attack didn't reveal specific flaws within Blockchain tech itself, it managed to exploit the older "web 2.0" technology that most users need to use to perform transactions, according to reports. (IANS/ MBI)
(Keywords: crypto wallets, BadgerDAO, decentralised finance, Blockchain, 120 million, crypto tokens, Hackers)
A total of 120 top Bollywood and other celebrities are expected to attend the wedding of film stars Katrina Kaif and Vicky Kaushal which is scheduled on December 9 in Rajasthan, said Rajendra Kishan, the District Collector (DC) of Sawai Madhopur district of the state on Friday. The District Collector told mediapersons: "These 120 guests shall follow all COVID-19 protocols and fully vaccinated guests will get entry in the much-hyped celebrity wedding."
Kishan said that the organisers have been asked to strictly follow all Covid-19 protocols. Also, those who are not vaccinated, will not be allowed without the negative RT-PCR test report, he added. "We have been informed by organisers that a total of 120 guests are invited to the wedding and the events will take place between December 7 to December 10," he added.
Earlier at 10.30 a.m., Kishan called a meeting which was attended by administrative, police and forest department officials, hotel and event managers to ensure adequate arrangements for crowd control, smooth regulation of traffic, and law and order situation amid the VIP movement. The wedding venue Fort Barwara, that has been converted into a heritage hotel, is situated in the panchayat samiti Chauth Ka Barwara. The venue is around 22 km away from Sawai Madhopur and is around 174 km from Jaipur. Sawai Madhopur district is famous for the Ranthambore National Tiger Reserve and as per reports, the guests are likely to be taken for a tiger safari. (IANS/ MBI)
(Keywords: Rajasthan, December 9, Vicky Kaushal, Katrina Kaif, film stars, celebrities, Bollywood, Katrina-Vicky)
The National Centre for Biological Sciences (NCBS), which confirmed the first two cases of the Omicron variant in Bengaluru on Thursday, is continuously monitoring the situation in four cities - Bengaluru, Hyderabad, New Delhi, and Pune. The NCBS is a part of a consortium of national laboratories performing genomic surveillance across four city clusters. The consortium was established four months ago with support from The Rockefeller Foundation's Pandemic Prevention Institute, and is led by the Centre for Cellular and Molecular Biology (CCMB) in Hyderabad.
Dr Rakesh Mishra at the CCMB said on Friday that the consortium is continuously monitoring the situation in all the four cities and has upscaled its efforts to sequence as many samples as possible Apart from the CCMB and the NCBS, the consortium includes CSIR-Institute of Genomics and Integrative Biology - IGIB in New Delhi and the Pune Knowledge Cluster, Indian Institute of Science Education and Research (IISER), Pune, and CSIR-National Chemical Laboratory in Pune.
The first case of the Omicron variant was detected in South Africa and reported to the World Health Organization on November 24. | Unsplash
The consortium is focused on upscaling genomic surveillance as part of national efforts led by the INSACOG - Indian SARS-CoV-2 Genomics Consortium - to respond to the Covid-19 pandemic. The consortium intensified its sequencing efforts after the World Health Organisation announced Omicron as a Variant of Concern. Such an intensified effort enabled the Bengaluru team at the NCBS, a member laboratory of INSACOG, in collaboration with Strand Life Sciences and the Bruhat Bengaluru Mahanagara Palike (BBMP), to detect, rapidly sequence and verify the existence of the omicron variant in samples from two Covid-19 infected individuals.
They hope this will aid in a rapid response to contain the spread of variants of concern. Prof Satyajit Mayor from the NCBS conveyed the information to local and national authorities, and the Indian government released a statement on December 2, all within four days of receiving the samples. Both SARS-CoV-2 genomes have also been uploaded to the global repository for SARS-CoV-2 sequences, GISAID, so that they can be publicly available to the scientific community, the NCBS said. (IANS/ MBI)
(Keywords: Hyderabad, New Delhi, Pune, Bengaluru, The National Centre for Biological Sciences, Situation, NCBS, Omicron)