Bitly users warned of possible compromise to accounts

9 May 2014

Image via Bitly's Facebook page

The URL shortening website Bitly, used by companies to monitor web traffic to particular links, has warned its users a potential breach may have compromised their account details.

In a post on Bitly’s blog, the developers of the service warned users of this potential breach by an unknown source. They have asked users to take all the steps necessary to try to protect their information and passwords from being used maliciously.

Shortly after the post was made, it was updated to report the Bitly team disconnected all Facebook and Twitter accounts from the service.

“We have no indication at this time that any accounts have been accessed without permission,” said the post. “For our users’ protection, we have taken proactive steps to ensure the security of all accounts, including disconnecting all users’ Facebook and Twitter accounts. All users can safely reconnect these accounts at their next login.”

The post, written by Bitly’s CEO Mark Josephson, asked users to reset their API key and OAuth token, and to make sure that all links using Bitly have been closed and re-opened in order for the changes to have been made.

Colm Gorey was a senior journalist with Silicon Republic

editorial@siliconrepublic.com