Recently, Twitter issued the following tweet on their @safety account:
If you follow the link, you will be given information about the Twitter modus operandi when it comes to all password-related issues, straight from the horse’s (bird’s?) mouth.
Here is the abridged version:
- You will never, ever receive an email, direct message or @reply from Twitter asking you for your password
- If Twitter has reason to believe your account has been compromised, it will reset the password, and notify you of the fact by an email in which a link located on the Twitter website will be included (and NOT by asking you to download an .html attachment). You can reset your password by following the link, but be careful and first scroll over it. If it’s on any other domain other than http://twitter.com/, don’t follow it. Also, it’s good to know that even in this instance, you will not be asked to provide the old password.
The Twitter Help Center is very easy to understand and navigate, and offers a lot of information about every kind of problem you might run into while using the service.
It is also a good idea to start following the @spam and @safety Twitter accounts for the latest news on attackers trying to take advantage of the users.