This afternoon, Twitter announced that as part of their efforts to keep people’s passwords safe they were accidentally writing them all down in a form that could be easily read. Twitter is saying that nobody had access to this log file they were accidentally generating, but just in case someone did… you should really change your Twitter password.

Though Twitter’s blog post is downplaying this error, it’s actually quite the massive security breach to write down the clear versions of everyone’s passwords no matter where they wrote them down and no matter who really did or didn’t have access to that file.

End of story? Now is a great time to switch up your Twitter password, and turn on Twitter’s Two Factor authentication as well.