Twitter logged all user’s passwords in plain text

May 5, 2018

Pre-context: Twitter admitted they had found a bug that showed all passwords in plain text rather than masked and encrypted. Their CTO Parag Agrawal commented:

We are sharing this information to help people make an informed decision about their account security. We didn’t have to, but believe it’s the right thing to do.Parag Agrawal

Just the mention of "didn't have to" makes you question their views on integrity and privacy. I'm interested in how the GDPR would view this scenario as there technically isn't a breach (under the GDPR, the company is legally obliged to notify users within 72 hours), it's a breach waiting to happen. It's like the bank left all of their customers money in the lobby.

It’s honest, authentic, and accessible.

I love sharing my experiences working in design and what’ve I’ve learned along the way. Join a community of thousands of designers, developers, and product professionals!

No flywheels, no lead magnets. Unsubscribe whenever you want.

Great! Just “one more thing”...

You need to confirm your email to confirm your subscription.