Twitter is becoming a daily life part and before the start of any new work, we would like to post updates on twitter. Twitter is growing incredibly because it’s easy to use and secure. Today after noon, when I was analyzing some of my yesterday pcap files and I was astonished to see that twitter is sending clear text password during change in profile setting. This could be a high alert flaw because without using keyword logger, I am loosing my password identity. On the same lan twitter hack could expose lot of username and passwords. I had captured the logs where in password field is colored with black and I could see it with my naked eyes because
it is in clear text format which is explicitly depicting that Twitter team is not using any encryption method during setting or profile updates.