2009-04-15T15:21:25-07:00
account compromised hack hacked login malware nieves phish phished phishing profile reset troubleshooting virus
10713
0
31796
false
true
false
true
44977
8
1
2009-11-05T13:35:32-08:00
crystal
17868
My account is compromised! (hacked?)
2009-11-06T11:29:46-08:00
<h1>How do I know if my account was compromised?</h1>
<p>Accounts may become compromised if you’ve entrusted your username
and password to a third-party application, or if your Twitter account
is vulnerable due to a weak password or compromised network. If you
notice any of the following things, take action as soon as possible:</p>
<ul>
<li>If tweets you didn't create appear on your Twitter profile page as posted by you.</li>
<li>If DMs (direct messages) you didn't intend are sent from your account.<br /></li>
<li>If you're unable to log in to Twitter with your Twitter username,
password, or email address (and you know you haven't changed them!)</li>
<li>If trying the password reset gives you the "Oh Snap! We can't find
you!" message when you enter your email address and/or username (try
both!)</li>
</ul>
<p> </p>
<h1>What should I do?</h1>
<p><strong>If you're still able to log in to your account</strong>, immediately do the following:</p>
<ol>
<li>Log out of Twitter immediately (this will invalidate the session cookie).<br /></li>
<li>Clear your browser cache and exit your browser completely (this
will stop suspicious or unwanted programs that may be running in the
background of your browser). <br /></li>
<li>Open a new browser window and log in to Twitter. Then, immediately change your password. You can also use the <a href="https://twitter.com/account/resend_password">Twitter password reset</a> feature to set a new password before logging in again. </li>
<li>Visit your settings page and check your <strong><a href="http://twitter.com/account/connections">Connections</a>. </strong>Revoke access for any third-party application that you don't recognize.</li>
</ol>
<p><img src="/attachments/1162192" border="0" alt="Twitter___Connections.jpg" /></p>
<p>Your account should be ok, but please <a href="http://help.twitter.com/requests/new" title="New Help Request">submit a support request</a> and include any statuses that weren't posted by you in the body of the
request. If you can record the link of the status update before
deleting it (click on the time the tweet was posted) and send us that
link, even better!</p>
<p>Finally, be sure to update your password in all of your third party
applications as well. If a third party application (like Facebook,
Twitterrific, Twhirl, etc.) is trying to use your old password to
access your tweets, it will lock you out of your account!</p>
<p> </p>
<p><strong>If you're NOT able to log in to your account</strong>, try to <a href="https://twitter.com/account/resend_password">reset your password</a> first. If you still can't get in, contact Support. Try submitting a <a href="http://help.twitter.com/requests/new">support request</a> through our online form. If you can't access that form, you'll be redirected to a Twitter login page. Click the link in the bottom-right corner of that page (it says "No account? Can't login?"). This link will enable you to email support directly. Please send your email from the email address associated with your Twitter account, and include the following information:</p>
<ul>
<li>Your Twitter username</li>
<li>Phone number associated with your Twitter account (if applicable)<br /></li>
<li>The welcome email that was sent you when you created your account (if you can find it)<br /></li>
<li>Any notifications you've recently received (follow, direct message, etc.)</li>
<li>A list of a few friends you've recently direct messaged, or who've recently messaged you</li>
<li>An old IM address you verified, if you had an account when Twitter allowed updating via IM</li>
</ul>
<p>This information will help us confirm your identity as the account owner.</p>
<p> </p>
<h1>Does it always mean that someone hacked my account?</h1>
<p>Not always. Occasionally, a third-party application will have a bug
that causes weird things to happen your account. If you see strange
behavior, changing your password and revoking connections will stop it,
as the application will no longer have access to your account. It’s
best to take action as soon as possible if updates are appearing in
your account that you did not intend to have posted or approve.</p>
<p> </p>
<h1>After the fact</h1>
<p>If you think your account was hacked but you're able to regain access, please make sure to:</p>
<ul>
<li>Delete any remaining unauthorized updates.</li>
<li>Scan your computers for viruses / malware, especially if
unauthorized tweets continue to be posted in your accounts even after
you've changed the password.</li>
<li>Use a password that you don't use anywhere else.</li>
<li>Never use the former password on a hacked account; create a new and difficult password unique to Twitter.</li>
</ul>
<p>Your password can never be too difficult! Make sure to use something no one would guess, ever!</p>
<p> </p>
<h1>Precautions</h1>
<p>You can help avoid incidents with some easy precautions:</p>
<ul>
<li>Choose a strong password with numbers, letters, and symbols. Make
your password difficult to reduce the chances of being hacked. Change
your password occasionally and don't use the same password for
everything.<br /></li>
<li>When you leave your computer or stop using a third party application, always log out--especially in a public place! </li>
<li>Do not select the "remember me" box on someone else's computer, or on your own if many people use it.</li>
<li>If you can, add a security code to unlock your phone--if your phone
is lost or stolen, it'll be harder for someone to get to your email,
Twitter account, or other private information before you change all of
your passwords.</li>
<li>Do not give your user name and password to any third party
applications or websites you haven’t thoroughly researched and take
precautions when it comes to your account safety.</li>
</ul>
<p> </p>
<h1>How do I know if my account was compromised?</h1>
<p>Accounts may become compromised if you’ve entrusted your username
and password to a third-party application, or if your Twitter account
is vulnerable due to a weak password or compromised network. If you
notice any of the following things, take action as soon as possible:</p>
<ul>
<li>If tweets you didn't create appear on your Twitter profile page as posted by you.</li>
<li>If DMs (direct messages) you didn't intend are sent from your account.<br /></li>
<li>If you're unable to log in to Twitter with your Twitter username,
password, or email address (and you know you haven't changed them!)</li>
<li>If trying the password reset gives you the "Oh Snap! We can't find
you!" message when you enter your email address and/or username (try
both!)</li>
</ul>
<p> </p>
<h1>What should I do?</h1>
<p><strong>If you're still able to log in to your account</strong>, immediately do the following:</p>
<ol>
<li>Log out of Twitter immediately (this will invalidate the session cookie).<br /></li>
<li>Clear your browser cache and exit your browser completely (this
will stop suspicious or unwanted programs that may be running in the
background of your browser). <br /></li>
<li>Open a new browser window and log in to Twitter. Then, immediately change your password. You can also use the <a href="https://twitter.com/account/resend_password">Twitter password reset</a> feature to set a new password before logging in again. </li>
<li>Visit your settings page and check your <strong><a href="http://twitter.com/account/connections">Connections</a>. </strong>Revoke access for any third-party application that you don't recognize.</li>
</ol>
<p><img src="/attachments/1162192" border="0" alt="Twitter___Connections.jpg" /></p>
<p>Your account should be ok, but please <a href="http://help.twitter.com/requests/new" title="New Help Request">submit a support request</a> and include any statuses that weren't posted by you in the body of the
request. If you can record the link of the status update before
deleting it (click on the time the tweet was posted) and send us that
link, even better!</p>
<p>Finally, be sure to update your password in all of your third party
applications as well. If a third party application (like Facebook,
Twitterrific, Twhirl, etc.) is trying to use your old password to
access your tweets, it will lock you out of your account!</p>
<p> </p>
<p><strong>If you're NOT able to log in to your account</strong>, try to <a href="https://twitter.com/account/resend_password">reset your password</a> first. If you still can't get in, contact Support. Try submitting a <a href="http://help.twitter.com/requests/new">support request</a> through our online form. If you can't access that form, you'll be redirected to a Twitter login page. Click the link in the bottom-right corner of that page (it says "No account? Can't login?"). This link will enable you to email support directly. Please send your email from the email address associated with your Twitter account, and include the following information:</p>
<ul>
<li>Your Twitter username</li>
<li>Phone number associated with your Twitter account (if applicable)<br /></li>
<li>The welcome email that was sent you when you created your account (if you can find it)<br /></li>
<li>Any notifications you've recently received (follow, direct message, etc.)</li>
<li>A list of a few friends you've recently direct messaged, or who've recently messaged you</li>
<li>An old IM address you verified, if you had an account when Twitter allowed updating via IM</li>
</ul>
<p>This information will help us confirm your identity as the account owner.</p>
<p> </p>
<h1>Does it always mean that someone hacked my account?</h1>
<p>Not always. Occasionally, a third-party application will have a bug
that causes weird things to happen your account. If you see strange
behavior, changing your password and revoking connections will stop it,
as the application will no longer have access to your account. It’s
best to take action as soon as possible if updates are appearing in
your account that you did not intend to have posted or approve.</p>
<p> </p>
<h1>After the fact</h1>
<p>If you think your account was hacked but you're able to regain access, please make sure to:</p>
<ul>
<li>Delete any remaining unauthorized updates.</li>
<li>Scan your computers for viruses / malware, especially if
unauthorized tweets continue to be posted in your accounts even after
you've changed the password.</li>
<li>Use a password that you don't use anywhere else.</li>
<li>Never use the former password on a hacked account; create a new and difficult password unique to Twitter.</li>
</ul>
<p>Your password can never be too difficult! Make sure to use something no one would guess, ever!</p>
<p> </p>
<h1>Precautions</h1>
<p>You can help avoid incidents with some easy precautions:</p>
<ul>
<li>Choose a strong password with numbers, letters, and symbols. Make
your password difficult to reduce the chances of being hacked. Change
your password occasionally and don't use the same password for
everything.<br /></li>
<li>When you leave your computer or stop using a third party application, always log out--especially in a public place! </li>
<li>Do not select the "remember me" box on someone else's computer, or on your own if many people use it.</li>
<li>If you can, add a security code to unlock your phone--if your phone
is lost or stolen, it'll be harder for someone to get to your email,
Twitter account, or other private information before you change all of
your passwords.</li>
<li>Do not give your user name and password to any third party
applications or websites you haven’t thoroughly researched and take
precautions when it comes to your account safety.</li>
</ul>
<p> </p>
2009-04-15T15:21:25-07:00
31796
10713
44977
2009-11-05T13:35:32-08:00
17868