Universal sign out and password changes


I am a developer, but not a twitter developer. I’m trying to understand a problem a follower of mine is having after getting hacked.

So this user, @lindasue0818, got hacked, changed her password, but spam tweets are still being sent once or twice a day from her account.

So I suggested she delete all her apps. That apparently didn’t fix anything.

Could the hacker have found a way to keep her account signed in under her old password?

Is that possible? Is there an app out there somewhere that can trigger a universal sign out? Or should that have happened automatically when the password got changed?

It’s just as likely she keeps choosing non-secure passwords, and just got immediately re-hacked by the same spam-botter, but I was curious…