Bitly Urges Users to Change Passwords After Security Breach.
User accounts profiles for the URL shortening service known as Bitly have been compromised as of recently, according to an officials statement from the company’s CEO. For user who are connected through the use of their Facebook or Twitter accounts to the service, they will need to re-connect their account during the next login.
Bitly has updated the security measures placed on user accounts, specifically to the OAuth token and API key.
A post found on Bitly’s officla blog, shows that existing users will need to reset their account password, change their API key and OAuth token and reconnect with their Facebook and Twitter profiles with their Bitly account.
The post further adds, “We have reason to believe that Bitly account credentials have been compromised. We have no indication at this time that any accounts have been accessed without permission. For our users’ protection, we have taken proactive steps to ensure the security of all accounts, including disconnecting all users’ Facebook and Twitter accounts.”
In order to rest the OAuth key and API key, Bitly users will need to go on “Advanced” tab which they can access by click on the “Your Setting” tab on their account. While in the “Advanced” tab they will need to select “Reset” option for “Legacy API Key”. A new API Key will be generated which the users will need in order to change all of the applications.
Users will locate the password reset option under “Profile” tab. They will also need to disconnect and reconnect all the applications they had been preciously using on Bitly. Under the “Connected Accounts” tab user can known which accounts are connected to their Bitly account.
Bitly has further elaborated that all the credentials within Facebook and Twitter have been nullified. This means users will not be able to post through Bitly to their Twitter and Facebook accounts until they have manage to reconnect them.