Twitter claims that it uses technology that masks the user passwords so that no one at the company can see them. However, the company has recently identified a bug that stored passwords unmasked in an internal log. But Twitter says that it has fixed the bug and a closed investigation ensures no sign of breach or misuse by anyone.
[HTML1]
However, Twitter advices its 336 million users to consider changing the password on all services where you might have used the password including Twitter. The company to mask passwords uses a process called hashing using a function known as bcrypt, which replaces the actual password with a random set of numbers and letters that are stored in Twitter’s system.
This actually allows Twitter’s systems to validate your account credentials without revealing your password. Because of this bug, the passwords are being written before the hashing method. Twitter says that it found the error themselves, removed the passwords, and are also the implementing plans to prevent this bug from happening again.