We are often asked the question, “How do I keep my Twitter account safe and private?” Good question, and we’re happy you asked.
First, you should know that attempts to directly “hack” Twitter are extremely rare. The majority of account compromises actually happen as a direct result of “phishing” schemes. Phishing is a way to target users by sending them fraudulent messages meant to trick them into sharing their passwords. This can come in the form of fake emails, attachments or log-in screens that are designed to look similar to your Twitter sign-in page.
You should know that Twitter never sends emails that request your password or asks you to download attachments. Similarly, you will never have to enter your Twitter password into anything other than a Twitter log-in screen on the web and applications that you trust. You can always make sure that you’re on the real Twitter site by checking the address bar in your browser—make sure the domain is Twitter.com. There is lot more about protecting yourself from phishing attempts on our support pages.
Here are some additional important recommendations from our Safety Center:
We’re committed to keeping Twitter a safe and open community and educating you, our users, about the best ways to keep your accounts secure. We post regular updates about safety and security via @safety and regularly update our account security help page. For individuals and organizations using Twitter in an official capacity, Twitter for Newsrooms has been updated with an excellent safety and security checklist, located here.