» RELATED: You don't have to #DeleteFacebook — 7 tips to lock down your privacy without leaving social media
But the bug, which has since been fixed, caused the passwords to be written to an internal log before the hashing process via bcrypt was complete.
The company came across the error, removed the passwords and are working on prevention methods. They found no indication of breach or misuse.
“We are very sorry this happened. We recognize and appreciate the trust you place in us, and are committed to earning that trust every day,” Agrawal wrote.
» RELATED: Did you fall for these fake ads? How Russian trolls got into your Facebook feeds
To change your Twitter password, visit the password settings page. You may also want to change your password on any services where the same password may have been used.
Remember to use a strong password and enable login verification, an extra layer of security that requires both your password and a code sent to your mobile phone to log in.
Other password tips:
1. Use a variety of characters including numerical, uppercase and lowercase letters and other special characters.
2. Avoid dictionary terms.
3. Use a password manager.
More at blog.twitter.com.