Twitter on Thursday asked its users to change their passwords after it inadvertently “unmasked” encrypted hashed passwords. The social networking company claims that it has discovered no indication of breach but is alerting users to change their passwords as a precaution.
While users can change their passwords for now, they can also enable a few security features that Twitter offers to its users. If you’re changing the password, ensure that it’s unique and not same as other internet services you use. While it’s a common practice to have a similar password for all apps, it’s extremely risky as well. You can go to ‘Have I been Pwned’ website to check if the password you’re using has been accessed or exposed in the past.
Another easier way to make sure your Twitter account safety is by enabling the two-step verification. Called login verification on Twitter, it’s an extra layer of security that lets you access your account through a mobile code sent to your registered phone number. In simpler words, with login verification enabled, you will be required to enter your password as well as the code sent to your phone number.
To change password of your Twitter account, go to in-app Settings > Account and privacy > tap on Password > enter current password and new password. Verify the new password.
How to enable two-step verification
In order to enable the two-step verification on Twitter, here’s what you need to do. First, register and verify your phone number and email ID on Twitter. To register phone number, click on the profile icon on your app/desktop and scroll down to Settings and privacy section. Click on “mobile” tab, select your country/region and enter your phone number and click on “continue.” Twitter will send you a verification code to your phone number, enter the same on the Twitter app/desktop, and your phone number is activated.
Now, for two-step verification, click your profile icon on your Twitter app and then choose “Settings and privacy.”
Tap on “Account” settings and then choose “Setup login verification.”
Click start > enter your password > hit Verify
Click on “Send Code” to add your phone number. Follow earlier mentioned steps to register your phone number, in case you haven’t done.
Enter the verification code. You can also create a back up code which can be used in the future if you lose your phone or change your phone number.
Bonus 1: Set up third-party verification app
You can also choose third-party applications such as Duo Mobile, Authy or Google Authenticator to get the verification code. To get started, go to Settings and privacy > Accounts > Security > Review your login verification methods > enter your password and hit confirm > Set up and then click start.
Now, after verifying your password, you will get a pop-up window featuring a QR code. Follow the on-screen instructions. Scan the QR code and enter the code in the next pop-up window.
Bonus 2: Set temporary password
Go to in-app settings > click on Account > generate app password > enter your current password and verify > create a temporary password. Note that the temporary passwords expire after one-hour.