Have you ever logged into an app or service using your Facebook, Google, or Twitter account? If so, you have opened the account password security liability hole. It's easy - why create a new password when I can just use an existing account to get directly in to this site, right? But, there are security risks associated with this practice that few of us may have considered before. For instance, a recent hack on the app "Twitter Counter" showed us this vulnerability first hand. And, it shows us that we all need to shape up our security practices when using social media accounts. Here are a few tips:
Revoke as many permissions as you can and do it every few months. Every account has a way to look through what apps have what sort of access to your account. Take a minute to run through the list and remove anything you don't use and anything you don't trust.
Twitter: Click on your avatar on the top right, next to the "Tweet" button, and select Settings and privacy. Look at the list on the left side, under your name and avatar, and click Apps. Click Revoke Access next to anything you don't want or need.
Google: Google makes it easy with the Security Checkup, which automatically runs through your app permissions, app specific passwords, connected devices, and other points of vulnerability for your account. Do it now and clean out all the cobwebs.
Facebook: Click on the question mark drop-down menu to the left of your notifications icon and select Privacy. Go to the left-hand rail and select Apps. Then click Show All at the bottom of the box marked Logged in with Facebook. With Facebook especially, plenty of these apps may have read-only access to your data, so they can look but not touch. Still, get rid of anything you don't use to make yourself as secure as possible.
Any other account that supports app integrations should have a similar list as well, and it is important to keep them pruned. There's no telling what little throwaway app might come back to bite you if its security isn't quite up to snuff, so be stingy with your access. You'll thank yourself.
If you'd like to read the full article written by Eric Limer, posted by Popular Mechanics on March 16, 2017 titled "How Hackers Can Break Into Your Accounts Without Your Password" just cut and paste the link below into your browser: