Too bad for the people using twitter, the website has been hacked and its traffic redirected somewhere else.

It is totally possible that people who submit data through the API may have their password stolen if they don’t use SSL, or use options to ignore SSL verification failure. If you submit through HTTP and tried to submit data while twitter was hacked, your password might have been stolen.