Yesterday we heard that around 32 million Twitter passwords had been leaked, the news was revealed after they went up for sale on the dark web.
Twitter has now confirmed that the passwords did not come from them and they are asking people to change their passwords.
We’ve investigated claims of Twitter @names and passwords available on the “dark web,” and we’re confident the information was not obtained from a hack of Twitter’s servers.
The purported Twitter @names and passwords may have been amassed from combining information from other recent breaches, malware on victim machines that are stealing passwords for all sites, or a combination of both. Regardless of origin, we’re acting swiftly to protect your Twitter account.
In each of the recent password disclosures, we cross-checked the data with our records. As a result, a number of Twitter accounts were identified for extra protection. Accounts with direct password exposure were locked and require a password reset by the account owner.
You can find out more details about changing your password and also about where these leaked passwords have come from at the link below.