Bitly Issues Warning Saying User Credentials Have Been Compromised

Advertisement
By Ketan Pratap | Updated: 9 May 2014 11:17 IST
Bitly, a URL shortening service issued an 'urgent security update' on Thursday that users' accounts credentials had been compromised.

In an official blog post Mark Josephson, CEO, Bitly said, "We have reason to believe that Bitly account credentials have been compromised. We have no indication at this time that any accounts have been accessed without permission."

The URL shortening service, in says it has taken "proactive steps to ensure the security of all accounts," including disconnecting all Facebook and Twitter accounts and invalidating all credentials. However, Bitly noted that users can reconnect their accounts with their Facebook and Twitter accounts during their next login.

Advertisement

Further, Bitly requested all its users to change their API key and OAuth token; reset password, and reconnect Facebook and Twitter accounts.

Bitly detailed the step-by-step instructions to reset users' account API key and OAuth token:

1) Log in to your account and click on 'Your Settings,' then the 'Advanced' tab.

2) At the bottom of the 'Advanced' tab, select 'Reset' next to 'Legacy API key.'

Advertisement

3) Copy down your new API key and change it in all applications. These can include social publishers, share buttons and mobile apps.

4) Go to the 'Profile' tab and reset your password.

Advertisement

5) Disconnect and reconnect any applications that use Bitly. You can check which accounts are connected under the 'Connected Accounts' tab in 'Your Settings.'

Josephson added, "We have already taken proactive measures to secure all paths that led to the compromise and ensure the security of all account credentials going forward. [..] We apologize for any inconvenience and we will continue to update our Twitter feed, @Bitly, as we have any further updates."

Advertisement

Bitly first reported about the possible account breach on Twitter and said, "We suspect Bitly account credentials have been compromised. Please take action now."

Notably, the URL shortening service has declined to give more details about the probable breach, as noted by multiple media reports and has pointed to its official blog post and Twitter account for future updates.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: Bitly, Cyber Security, Internet
Advertisement

Related Stories

Popular Mobile Brands
  1. Everything We Know About the Nothing Phone 4b
  2. Vivo Y500 4G Makes Global Debut With an 8,100mAh Battery: See Price
  3. Samsung Galaxy Z Fold 8 Series, Galaxy Flip 8 Price Leaked Ahead of Debut
  1. Vivo Y500 4G Launched With 8,100mAh Battery, 50-Megapixel Rear Camera: Price, Specifications
  2. Moto G77 Power Listed on Company's Website With Key Specifications Before July 8 Debut
  3. Samsung Galaxy Z Fold 8, Galaxy Fold 8 Ultra, Galaxy Flip 8, Watch 9 Prices Leaked Online Ahead of Launch
  4. Xiaomi 18 Pro Max Camera, Display, Battery Details Tipped; May Get 8,500mAh Battery, 200-Megapixel Cameras
  5. iPhone 18, iPhone 18e Tipped to Get 9GB RAM Upgrade for Apple Intelligence; Pro Models May Stick With 12GB
  6. Amazon Prime Day 2026 Laptop Deals: Best Discounts on HP, Asus, Lenovo, Dell, Acer Models
  7. Best Camera Phones Under Rs. 30,000 for Content Creators in India: Motorola Edge 70 Fusion, Galaxy F56, More
  8. Boat Stone 900 Launched in India With Up to 80W Sound Output, Up to 15 Hours Audio Playback: Price, Features
  9. Cyberpunk 2077 Has Sold 40 Million Copies, CD Projekt Red Confirms
  10. Nothing Phone 1 Receives Final Software Update With Latest Security Patches, Bug Fixes and Improvements
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.