With so many individuals using Twitter for both work related as well as personal related reasons, you may be interested to know that it was announced on the Pastebin website recently that tens of thousands of Twitter users’ email addresses and passwords have been dumped online.
Unfortunately, with a number that appears relatively low (58,978 as reported) compared to the total number of total Twitter users (reported as over 140 million), the importance of having a breach at all gets lost in the claim that this breach would have affected only about 0.02% of its user base. If you were one of the victims of the breach, how would you view the fact that your privacy might not or could be considered important enough to cause at least more than a minor claim over this issue?
Another strategy being used by Twitter to play down the importance of this breach is to claim that these passwords are not that “important” — i.e. blocked spam accounts or duplicates. Isn’t a breach event enough reason to begin a full root cause analysis procedure?
The other issue to be considered is that Twitter is still working thru its settlement with the FTC for a more major privacy violation incident back in 2009 — and, how will this most recent breach event factor into that settlement.
In so many ways our current generation continues to define privacy differently than past generations, and this ongoing change of reference is remains a dynamic influence on the direction that governmental regulatory bodies rely on for determining compliance and regulatory requirements affecting where you work, where you live and how your family’s privacy rights can be protected.
Matthew J. Schwartz has posted more information on this recent Twitter breach and you can read more here.