Last night – Twitter disclosed in a blog post that its systems had been attacked in the past week by an unidentified group of hackers. The attackers may have had access to limited user information – usernames, email addresses, session tokens and encrypted/salted versions of passwords – for approximately 250,000 users.
The following items are a few ways of detecting if your account was compromised:
- Noticed unexpected Tweets by your account
- Seen unintended direct messages (DMs) sent from your account
- Observed other account behaviors you didn’t make or approve (like following, unfollowing, or blocking)
- Received a notification from Twitter stating that “You recently changed the email address associated with your Twitter account.” (even though you haven’t changed your email address)
If you’ve answered YES to any of the above, please take the following steps:
- Change your password
- Revoke connections to third-party applications
- Update your password in your trusted third party applications
https://support.twitter.com/articles/31796-my-account-has-been-compromised#