LinkedIn Hacked - 6,46 million passwords leaked online?
http://www.theverge.com/2012/6/6/306...rd-leak-online
Quote:
A user in a Russian forum is claiming to have hacked LinkedIn to the tune of almost 6.5 million account details. The user uploaded 6,458,020 hashed passwords, but no usernames. It's not clear if they managed to download the usernames, but it's likely that both have been downloaded.There is a possibility that this could be a hoax, but several people have said on Twitter that they found their real LinkedIn passwords as hashes on the list. Many of the hashes include "linkedin," which seems to add credence to the claims.
We spoke with Mikko Hypponen, Chief Research Officer at F-Secure, who thinks this is "a real collection." He told us he is "guessing it's some sort of exploit on their web interface, but there's no way to know. I am sure sure LinkedIn will fill us in sooner or later."
It's worth noting that the passwords are stored as unsalted SHA-1 hashes. SHA-1 is a secure algorithm, but is not foolproof. LinkedIn could have made the passwords more secure by 'salting' the hashes, which involves merging the hashed password with another combination and then hashing for a second time. Even so, unless your password is a dictionary word, or very simple, it will take some time to crack. We've reached out to LinkedIn to determine the accuracy of the claims, but in the meantime, we recommend changing your password just in case.
Update: LinkedIn has just tweeted that it is looking into the matter.
gg :f3: Not sure how confirmed this is, but this is a headline on 2 finnish news sites right now.
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Cool.
They tweeted it so it must be true@@
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
What good is the password if people don't know the username?
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Quote:
Originally Posted by
Locked
Cool.
They tweeted it so it must be true@@
Well, plenty of news sites have picked on it, but that alone doesn't mean much. Only way we can know for sure is when LinkedIn comments on it, and that could take a while until they admit it (Remember Sony?).
I don't use it, but if it's true, it's alarming because they have like 150mil users.
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Quote:
Originally Posted by
Satellite
Well, plenty of news sites have picked on it, but that alone doesn't mean much. Only way we can know for sure is when LinkedIn comments on it, and that could take a while until they admit it (Remember Sony?).
I don't use it, but if it's true, it's alarming because they have like 150mil users.
If you bothered to read the source you provided.
Quote:
Update: LinkedIn has just tweeted that it is looking into the matter.
Our team is currently looking into reports of stolen passwords. Stay tuned for more.
— LinkedIn News (@LinkedInNews) June 6, 2012
Update 2: LinkedIn has tweeted again, and has been unable to confirm any security breach yet. Given the growing number of users that have found their password in the hashes, that's worrying news.
Our team continues to investigate, but at this time, we're still unable to confirm that any security breach has occurred. Stay tuned here.
— LinkedIn News (@LinkedInNews) June 6, 2012
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Quote:
Originally Posted by
Locked
If you bothered to read the source you provided.
*quote*
Or maybe that update wasn't there when I googled the article?
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
pomegranate. I use different passwords for different websites, all having something similiar.
Why did I make a LinkedIn account to stalk people?
;c
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Quote:
Originally Posted by
maplefreak26
pomegranate. I use different passwords for different websites, all having something similiar.
Why did I make a LinkedIn account to stalk people?
;c
LinkedIn isn't intended for "stalking people" any more than E3 is meant to be a place to meet prospective dating partners.
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Quote:
Originally Posted by
Rayquaza2233
LinkedIn isn't intended for "stalking people" any more than E3 is meant to be a place to meet prospective dating partners.
I know but I made the account to stalk Crystin Cox and her colleagues.
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Quote:
Originally Posted by
maplefreak26
I know but I made the account to stalk Crystin Cox and her colleagues.
Which doesn't blunt the point I made in the post at all.
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Quote:
Originally Posted by
Rayquaza2233
Which doesn't blunt the point I made in the post at all.
I wanted to say who I was stalking.
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Makes me feel glad I ignored all those LinkedIn invitations that keep clogging my email inbox.
Re: LinkedIn Hacked - 6,46 million passwords leaked online?
Trying to find work and my local career center is all networking this, networking that; linkedin is all the rage!
And now this. Can't say it adds any optimism to this continued time without work =( It was on my local news station this morning as well.
