There have been reports of users receiving emails from Twitter telling them to change the password on their account. And, while you might rightly be suspicious of any email asking for your password, this time it’s the real deal.
TechCrunch is reporting that Twitter is sending emails to users whose accounts might have been compromised.
The emails reads, in part:
“…your account may have been compromised by a website or service not associated with Twitter. We’ve reset your password to prevent others from accessing your account.”
It includes a link to where the user can change his or her password to something new, as well as security tips and a link to Twitter’s help page.
This type of email is often used by phishing scams to trick unsuspecting users into giving away their password – but this particular email is actually from Twitter, and it’s the real deal.
One reason this looks fishy is because Twitter’s email doesn’t specify the type of security breach they found. Phishing scams are often vague in nature, to cast a wider net and play into people’s fears.
Despite this, this email is legitimate, and anyone who has received it should take action as quickly as possible.
TechCrunch reports that the unnamed security issue is quite widespread, with many users chiming in to say they’ve received the warning from Twitter.
Edit: The Next Web is reporting that some of the users that Twitter sent password reset emails to were not actually compromised, although at least a small portion – including TechCrunch – were compromised.