Twitter has forced a password reset on an unnamed number of accounts exposed this week in a dump of 32.8 million account names and credentials. A Russian hacker known as Tessa88 has been involved in a number of recent password disclosures with Twitter being the most recent. Twitter has said it encrypts using Bcrypt, it s likely they were stolen directly from users. Twitter recommends users take advantage of two-factor authentication it offers, in addition to using strong passwords, avoid re-using the same password elsewhere online, or use password managers.
Source: https://threatpost.com/twitter-forces-password-reset-on-some-exposed-accounts/118600/